Slashdot Mirror

← Back to Stories (view on slashdot.org)

US Warns Users of Child-Porn Blackmail Ransomware

Posted by timothy on from the nefarious-evildoers dept.

coondoggie writes "The nasty Trojan known as Citadel malware, which is based on Zeus, has typically been used to extort money from online banking users, but a new variant is making the rounds that tries to get your money by saying you looked at child porn sites and must pay a violation fee to the U.S. Department of Justice. This variation, called Reveton, lures the victim to a drive-by download website, at which time the ransomware is installed on the user's computer, says the U.S. Internet Crime Complaint Center (IC3). Once installed, the computer freezes and a screen is displayed warning the user they have violated United States Federal Law."

49 of 196 comments (clear)

  1. Scummy yet brilliant. by MrQuacker · · Score: 5, Insightful

    Its not like you can call the police and complain about it. You'll instantly get labeled as a pedo and have your kids taken away.

    1. Re:Scummy yet brilliant. by Anrego · · Score: 2

      I imagine most people would also be hesitant to take it into a repair shop with that message displayed on the screen even if they recognize it as a scam.

    2. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 5, Interesting

      Seems to me that from your post American law has a much bigger problem than the Russians do in this particular instance.

    3. Re:Scummy yet brilliant. by Joce640k · · Score: 5, Interesting

      This is why "possession" of something shouldn't be a crime. Anything can be planted in your house/PC/car/whatever without your knowledge.

      A country which allows a computer virus to ruin your life and make you forever unemployable has some serious problems with its laws.

      PS: I cleaned up a machine with this three or four months ago here in Spain.

      --
      No sig today...
    4. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 5, Funny

      "PS: I cleaned up a machine with this three or four months ago here in Spain."

      With MyCleanPC no doubt.

    5. Re:Scummy yet brilliant. by Joce640k · · Score: 2

      But it's possession of illegal material. There are many good reasons why possession of certain stuff can be considered a crime. Toxic/dangerous stuff without a license.

      Sure, if they can prove that you *know* you have the stuff in your possession.

      eg. If they find the heroin in a baggie in your underpants then it's unlikely you didn't know about it. If they find it taped under your desk in a busy office then there's no way you should be in trouble unless they have more evidence. Innocent until proven guilty and all that.

      --
      No sig today...
    6. Re:Scummy yet brilliant. by Opportunist · · Score: 4, Insightful

      And that's the part that scares me more than that ransomware by itself. Because it can only mean one of two things:

      1. That there ARE actually that many people looking at CP and they feel guilty and don't get help for that reason.

      2. The CP witch hunt has crossed the line where people don't even dare to get help if accused wrongly because the allegation alone already puts you on some stupid list.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    7. Re:Scummy yet brilliant. by Opportunist · · Score: 2, Insightful

      You mean, like, say, Communists?

      Oh, the ironing.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    8. Re:Scummy yet brilliant. by DarkOx · · Score: 4, Insightful

      We don't have "American Law" we have whatever your favorite executive agency decides to this week or worse with this person. That is the real problem.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    9. Re:Scummy yet brilliant. by VortexCortex · · Score: 4, Insightful

      But it's possession of illegal material. There are many good reasons why possession of certain stuff can be considered a crime. Toxic/dangerous stuff without a license.

      You may disagree that CP should be considered illegal material, but good luck convincing lots of people otherwise.

      On any website there could be this:
      <iframe src="http://pedo.example.com/illegal-porn.jpg" style="width:1px; height:1px; border:none" ></iframe>

      Cross site scripting and/or SQL injection could easily plant that stuff on any website, unseen. Your browser will happily and automatically download the image and put the "illegal material" in your possession.

      We don't need "good luck convincing lots of people" that this can happen to them, all we need are script-kiddies like Anonymous who'd love nothing more than to get a bunch of people wrongfully convicted of child porn possessions esp. if it means making a point about how retarded the law is.

      This stuff isn't dangerous or toxic sitting in your Internet cache unseen and unknown to anyone. It's only dangerous to have the configuration of bits on your drive because the laws have deemed it to be so. Protip: this script kiddie scenario isn't hypothetical... delete your caches regularly.

    10. Re:Scummy yet brilliant. by flyneye · · Score: 2

      Where's Batman when you need him?
      There really needs to be a vigilante for law enforcement to unofficially ignore while the press reports on the worldwide vivisection of Malicious code authors, botnet admins and their benefactors.

      --
      *Repent!Quit Your Job!Slack Off!The World Ends Tomorrow and You May Die!
    11. Re:Scummy yet brilliant. by spiffmastercow · · Score: 4, Insightful

      I'm not so sure he was joking.. At any rate, if you call the cops they expect to arrest someone. If the real perp is too inconvenient to go after, you're the lucky winner. This is even more likely if the malware does a bunch of google searches for kiddie porn in the background

    12. Re:Scummy yet brilliant. by ObsessiveMathsFreak · · Score: 5, Insightful

      This has nothing to do with "possession" or even crime in and of itself.

      This has to do with the hysterical overreaction of the general public towards anything which is so much as suspected as being involved with or related to child pornography. Victims of this ransom-ware may well pay in fear of being ripped to pieces by an angry mob, and their fears would not be all that far fetched at this point. At the very least, they stand a good chance of having their entire life ruined should even a hint of suspicion fall on them.

      Child pornography, like all hysterias, has become an excuse for a segments of the public to indulge in chaos, anarchy and criminal behaviour in their reaction to it. Even a pointed finger can now be a life or death sentence for innocent people. This is why it was important not to let the rule of law slide on this or any other issue.

      But no. People wanted to indulge their outrage. I suppose democracies get what they deserve.

      --
      May the Maths Be with you!
    13. Re:Scummy yet brilliant. by fustakrakich · · Score: 2

      If they put half as much effort into legitimate business imagine how much money they'd have made.

      Contraband is much more profitable... and tax free. Crime does pay... very well.

      --
      “He’s not deformed, he’s just drunk!”
    14. Re:Scummy yet brilliant. by LordLimecat · · Score: 4, Informative

      You really, really, really dont want to live in a world where vigilante justice is what passes for criminal justice.

    15. Re:Scummy yet brilliant. by 1s44c · · Score: 4, Insightful

      By 'rapist', you mean 'is accused of having consensual sex without using a condom', a minor crime in Sweden with a $750 penalty.

      If it's such a minor crime why is Sweden willing to extradite him for it? Maybe because they intend to send him to a US torture camp, something the UK is unwilling to do.

      Rape, having consensual sex without using a condom, or whatever every else Julian Assange is being accused of is just a ruse to get him somewhere the US can deport from.

    16. Re:Scummy yet brilliant. by spiffmastercow · · Score: 2

      Since when do the police know the law?

    17. Re:Scummy yet brilliant. by t4ng* · · Score: 5, Informative

      Yes, because something like that could never happen in a democracy, so it must have been a joke!

    18. Re:Scummy yet brilliant. by DarkOx · · Score: 2, Insightful

      Yes once in a great while you see a tiny glimmer of hope but not often enough. The former administration was slightly better in that they at least got Congress to authorize things, even if they boondoggled them to do it. The current admin has lets see:

      1. Orchestrated the passage of the Affordable Care Act in a way that was deliberately designed to prevent congress for reading it before the vote.

      2. Given an American Car company to the Italians over the objection of the bond holders, despite the proper order claims under bankruptcy law. Going on TV and (this is provable) knowingly lying about the position of the bond holders and thereby slandering them as unwilling to help the nation.

      3. Conducted a military action without congressional approval in Libya for more than 60 days.

      4. Decided on their own Due Process, where it comes to the execution of an American Citizen, is met by simply talking about it amongst themselves.

      5. Granted states waivers for the No Child Left Behind act despite the fact that the low does not specify an provision for doing so and they have no legal authority to do fail to enforce the law in this way even if it is stupid.

        I could go on and on but the above are the ones most people will be familiar with. Regardless of if in your view the immediate outcome of some of these actions has been positive or your feelings on the policy being correct. It show contempt for our political system. It damages the rule of law and the strength or our Constitutional protections.

      Over the long term its bad for the nation. No simply voting a GOP at least the mainstream, or TEA party ticket is not the answer. There are good people on both sides of the political isle who act with integrity. That is the answer voters need to set aside their short term agendas and elect people who respect our laws and system. We need to vote for people who look at our political frame work as something to cherish and work within, rather than something to try and weasel around.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    19. Re:Scummy yet brilliant. by rrohbeck · · Score: 2

      delete your caches regularly.

      Which would also require you to wipe the free space on your disk because LEA scanners look for sectors with specific content.

      --
      thegodmovie.com - watch it
    20. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 4, Insightful

      I speak from personal experience. Being arrested and charged with a sex crime does fuck you for life in the U.S. I was arrested, spent 14 months awaiting my "speedy trial" and was acquitted in court. However when I purchase a gun my arrest is flagged and it takes three days for the paper work to be approved. Also I have neighbors who now treat me like dirt because the arrest is printed in the paper but the acquittal isn't. Being arrested is akin to being convicted, in the American legal system. Here, there is no such thing as the American Justice system.

  2. Stupidity by Anonymous Coward · · Score: 2, Insightful

    A "violation fee" to the "Department of Justice" for a felony without conviction.

    What kind of idiot is going to--- never mind.

  3. Who would fall for a fee? by Anonymous Coward · · Score: 3, Funny

    I'm pretty sure with all the "DINK OF TEH CHILLUNS!" bullshit that goes on that we burn anyone that looks at child porn at the stake, no one will believe they can get away with it for just a fine.

    1. Re:Who would fall for a fee? by Billly+Gates · · Score: 2

      The problem is the laws define a pedo with just having the material.

      For example, if I uploaded kiddie porn to your computer you are a criminal for having it. Sure the penalty is much less than being a kiddie porn manufacturer which is someone who sends it but you are not guilty.

      Worse, try to get a job again? Your future is ruined forever, because of an asshat and many will pay to make the problem go away! This is truly evil in the nth degree whether you feel this current laws are silly are not.

      No respectable employer will hire anyone and yes if someone plants porn your life is gone whether you had anything to do with it or not. I can see people willing to pay believe or not sadly for these reasons.

      --
      http://saveie6.com/
    2. Re:Who would fall for a fee? by MacGyver2210 · · Score: 3, Interesting

      There was recently (in the last few months, I believe) an article about intent in child porn cases. I think it was even on /. It said that simply possessing the child porn wasn't enough, there had to be proof that the person had intentionally viewed it.

      found it. http://tech.slashdot.org/story/12/05/10/138205/ny-ruling-distinguishes-downloading-viewing-child-pornography

      Is that only in New York, or has it set some sort of precedent or how does that work? I'm not fluent in legalese.

      --
      If the only way you can accept an assertion is by faith, then you are conceding that it can't be taken on its own merits
    3. Re:Who would fall for a fee? by Amouth · · Score: 5, Insightful

      but even if it is only in that area - you have to prove you didn't do it, and even if you can do that you have to do it n court, even if you come away "free" then it is still there that you where once prosecuted for it, and you have to live/survive that process which will more than likely ruin your life as you know it.

      --
      '...if only "Jumping to a Conclusion" was an event in the Olympics.'
    4. Re:Who would fall for a fee? by rally2xs · · Score: 2

      Pay? Not much more than the price of a brand new hard drive,which last time I looked was about $90. Bury the old dribe somewhere unretrievable, install the new drive, and you either baccked up your data or you didn't. No worse than a hardware meltdown...

    5. Re:Who would fall for a fee? by SuricouRaven · · Score: 4, Informative

      Not for very long, though. If you follow the media, espicially the more conservative media, there is a fair bit of public outrage at the ruling - lots of headlines along the lines of 'New York legalises child pornography!'. So much that within less than a day of the ruling, the legislature was already in the process of passing a bill to reverse it. It will, without a shadow of a doubt, sail through unchallenged.
      http://www.deseretnews.com/article/765576135/New-York-bill-quickly-follows-court-ruling-on-child-porn.html

    6. Re:Who would fall for a fee? by gstrickler · · Score: 2

      Obviously you must be a pedophile, anti-American, neo-Nazi, terrorist [did I miss any?]. How dare you mock "think of the children".

      Everyone, for the sake of our children, please help root out this vile anonymous coward. We must not allow questioning of anything done for the children. /sarcasm

      --
      make imaginary.friends COUNT=100 VISIBLE=false
    7. Re:Who would fall for a fee? by Anonymous Coward · · Score: 2, Informative

      She's lying. There's little to no commercial trading. A few places require newcomers to trade pictures to join but most sources are free. Commercial trade is too dangerous.

      The curious thing about child porn is that so few people are involved in it that very few actually know how it works. That leaves the field open to people with an agenda to lie because you cant argue against them without knowing how the field works and if you know then people will think you're involved in it.

    8. Re:Who would fall for a fee? by Nimey · · Score: 2

      Now if only this trojan could be targeted at certain prominent conservatives... say Limbaugh, Murdoch, et al. When it came out they'd gotten this on their computers, bet you the conservative media drumbeat changes.

      --
      Hail Eris, full of mischief...

      E pluribus sanguinem
    9. Re:Who would fall for a fee? by TinyLittleMend · · Score: 2

      Unfortunately for those who are truly innocent

      No. Not "unfortunately." I'd rather have a hundred criminals escape than wrongfully convict a single innocent person. People are innocent until proven guilty, not the other way around. That doesn't change just because children are involved, or for any other reason.

      Pedophiles were once children, so, are there any signs that would indicate someone may grow up to become a pedophile?

      It's only a problem if they become child molesters. Pedophiles don't necessarily molest children, and I do not believe in thought crime.

      The cycle needs to be ended if we want to prevent the victimization of children.

      If the solution involves punishing people for thought crime or harming innocents, I'm out.

  4. de-lousing... by harvey+the+nerd · · Score: 2

    Sounds like a job for a bootable Linux lite thumb drive with trojan hunting files.

    1. Re:de-lousing... by SuricouRaven · · Score: 5, Insightful

      You are not the target of this scam.

    2. Re:de-lousing... by AHuxley · · Score: 4, Funny

      Pay money or your IM/irc friends gets random Windows 8 questions .... interlaced with Maths 101 questions...
      It took you a long time to find Linux users, pity if they where to think of you as dual booting...

      --
      Domestic spying is now "Benign Information Gathering"
  5. Re:aka Idiot tax by SuricouRaven · · Score: 4, Insightful

    I think it's a great scam, because people are terrified of the idea of being associated with child porn. A threat like that will ensure they don't go to a repair shop, or mention it to anyone. Not the police, not friends or family. Noone. Greatly reducing the chance of the sucker being told it's a scam.

  6. Re:aka Idiot tax by AHuxley · · Score: 2

    If the command server is raided and all the ip's/timestamps that are waiting for CC numbers are found in plaintext?
    Thats a lot of crime to solve, a huge boost for cyber enforcement clear up numbers and a budget boosting PR victory for next year ...

    --
    Domestic spying is now "Benign Information Gathering"
  7. Re:Not as bad as I expected... by DarwinSurvivor · · Score: 4, Insightful

    That would also make them distributors and the target of just about every federal and most international police forces. As it stands now, it's just extorsion so as far as the governments are concerned, they're just lumped in with all the other un-prosecuted Nigerian scammers.

  8. I don't get it by Chrisq · · Score: 4, Funny

    Bury the old dribe somewhere unretrievable

    I guess "old dribe" must be the guy sending out these blackmail notices then.

  9. Re:aka Idiot tax by Anonymous Coward · · Score: 5, Insightful

    In most places, Illegal porn gets you a a dirty look from the judge and a fine if you are really unlucky. CP on the other hand can get you a 20+ year sentence in the US.

    It doesn't matter if the victim watches it or not. The scammers are hoping to exploit the fact that their victims would be reluctant to seek help out of fear of false prosecution, which is not as far fetched as I'd like to. Personally, I'd suggest zero-write to anyone who caught this bug. I wouldn't count on the malware authors not putting incriminating evidence on infected systems and even putting spiteful logic bombs which trigger when you clean the infection. Better paranoid than trying to reason with the pitchfork jury.

  10. It's worldwide by jimicus · · Score: 4, Informative

    I've seen a version that's been localised to the UK; apparently there are also versions localised to Canada. I haven't analysed it but it wouldn't surprise me if it's all the same trojan and it uses geolocation to display an appropriate logo.

    Brilliant scam because even if the user knows it's a load of rubbish, nobody wants to be even remotely associated with paedophilia. You'd have to be a bit of an idiot to think you could make such an accusation go away by paying a small fine - or for that matter to believe that the police's MO in these cases is to put a great big warning on your screen (rather than to arrest you at dawn and take all your computers away), but I suspect there are probably enough idiots in this world to make it profitable.

    1. Re:It's worldwide by deroby · · Score: 5, Informative

      My dad's PC had this, although apparently the creators didn't do their homework very well. Belgium having 2 (main) languages the scareware used the wrong language for this part of the country so he hardly understood what needed doing (not everybody speaks both languages). Off course the police logo etc made it look kind of daunting and -although it started up ridiculously slow- once it took over the pc became completely unusable.

      It was rather easy to get rid of (safe mode, regedit, hijack-this and then a full scan with Security Essentials -which seemingly had missed it originally!)

      The part I don't get is : how do the scammers get to their money (assuming some people are silly enough to pay) without the possibility of being traced back ?
      => shouldn't there be ridiculously easy traces to follow via paysafecard.com ??
      => worst case it should be easy enough to have these -at least!- blocked

      --
      If there is one thing to be learned on slashdot, it has to be sarcasm.
    2. Re:It's worldwide by Dunbal · · Score: 3, Informative

      how do the scammers get to their money (assuming some people are silly enough to pay) without the possibility of being traced back ?

      Usually they use different 3rd parties, don't tell them where the money is comig from or where it's going, and have them take the fall if they get caught.

      --
      Seven puppies were harmed during the making of this post.
  11. Re:aka Idiot tax by EdIII · · Score: 2

    Just illegal porn would be much better

    Uhhhh... what is illegal porn again? Child porn involves criminal acts with a child. Rape porn, also involves criminal acts against a person. Snuff... well you get the point.

    Other than obvious instances of crimes that are being visually recorded just what do you feel should be made illegal?

    Sounds to me like "illegal" porn is just what you find objectionable on a moral or cultural basis, and is not actually against any law. Unless you are talking about antiquated sodomy laws or something.

  12. Re:aka Idiot tax by Dr_Barnowl · · Score: 4, Informative

    Well, for example, porn that depicts violent acts, even between consensual adults, is illegal in the UK.

    The performers have a defence as long as the acts they participate in are acts which a person is legally able to consent to in the UK, but the photographer and others present (sound crew, director, etc) are on the hook.

    A relatively recent law as well, so not some antiquated sodomy law.

  13. As night follows day by PopeRatzo · · Score: 4, Insightful

    Who couldn't see this coming? First, you make "looking at child porn" the worstest crime imaginable, like genocide against against a million nuns, worst than murder, worst than cannibalism, worst than, I don't know, eating fatty food, and then you...PROFIT!

    Anybody want to bet that in the next few years (or less) we'll be hearing about some major politician who has (cue the somber, scary music...) looked at drawings of naked children.

    "Is he right for America? We don't think so. Paid for by Americans for Families and Stopping Immoral Behavior among People Who are Different From Us."

    --
    You are welcome on my lawn.
  14. Re:aka Idiot tax by bergelin · · Score: 4, Informative

    A translator of Manga comics recently got convicted of child pornography in the district court and the court of appeal in Sweden. This picture (nothing nasty really) was judged as child pornography by the district court, but was cleared in appeal. He was still found guilty in appeal though, but for other pictures. The case is currently being heard by the Supreme Court.
    The defendant is not a child abuser by any means, and in all likelihood hasn't got any pedophilic tendencies. He's just a fan of Japanese comics and owns a huge collection of those.

  15. Violating Federal Copyrights and Identities by Doc+Ruby · · Score: 3

    The operators of this extortion system should be on the "Public Enemy #1" list. Not only are they an organized syndicate extorting from Americans, on a very large and nationwide scale. They are impersonating Federal officers to do it. Protecting the ability of Americans to respect someone who claims to be a cop, especially a Federal one, is among the highest priorities of the Justice Department. Or at least it should be.

    The failure of the FBI and the other cop agencies we give $BILLIONS to every year, who have vast and even un-Constitutional powers to do whatever they want in the name of protecting us, to do what's necessary to stop these giant phishing operations is baffling mystery. Why banks are allowed to let their trademarked brands get diluted by phishers robbing in their name, resulting in large and widespread losses contrary to the very essence of trademark and copyright, is a mystery. But the failure of the cops to protect themselves is even more bizarre.

    --

    --
    make install -not war

  16. what we need to stop this by RobertLTux · · Score: 2

    1 make it a lot easier for folks to get hands on Self Booting Fix discs (hint Norton/Mcafee/ect should include this in their products)

    2 redefine CP laws so that CP is defined in a strict narrow way:
    as a rough example:
    A Does it depict a Sex Act with a Minor?? (wiggle for models with actual ages not in line with appearance needs to be written in)
    or
    B Is the Model NUDE (or only clothed in something Trival) AND is it devoid of Artistic Diagnostic or Documentary Value
    or
    C Does it depict any other crime

    Then the Pic/Vid/media IS NOT CHILD PORN.

    the problem is BURN THE WITCH!! is never Justice so we need sanity in the laws.

    --
    Any person using FTFY or editing my postings agrees to a US$50.00 charge