Slashdot Mirror

← Back to Stories (view on slashdot.org)

US Warns Users of Child-Porn Blackmail Ransomware

Posted by timothy on from the nefarious-evildoers dept.

coondoggie writes "The nasty Trojan known as Citadel malware, which is based on Zeus, has typically been used to extort money from online banking users, but a new variant is making the rounds that tries to get your money by saying you looked at child porn sites and must pay a violation fee to the U.S. Department of Justice. This variation, called Reveton, lures the victim to a drive-by download website, at which time the ransomware is installed on the user's computer, says the U.S. Internet Crime Complaint Center (IC3). Once installed, the computer freezes and a screen is displayed warning the user they have violated United States Federal Law."

26 of 196 comments (clear)

  1. Scummy yet brilliant. by MrQuacker · · Score: 5, Insightful

    Its not like you can call the police and complain about it. You'll instantly get labeled as a pedo and have your kids taken away.

    1. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 5, Interesting

      Seems to me that from your post American law has a much bigger problem than the Russians do in this particular instance.

    2. Re:Scummy yet brilliant. by Joce640k · · Score: 5, Interesting

      This is why "possession" of something shouldn't be a crime. Anything can be planted in your house/PC/car/whatever without your knowledge.

      A country which allows a computer virus to ruin your life and make you forever unemployable has some serious problems with its laws.

      PS: I cleaned up a machine with this three or four months ago here in Spain.

      --
      No sig today...
    3. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 5, Funny

      "PS: I cleaned up a machine with this three or four months ago here in Spain."

      With MyCleanPC no doubt.

    4. Re:Scummy yet brilliant. by Opportunist · · Score: 4, Insightful

      And that's the part that scares me more than that ransomware by itself. Because it can only mean one of two things:

      1. That there ARE actually that many people looking at CP and they feel guilty and don't get help for that reason.

      2. The CP witch hunt has crossed the line where people don't even dare to get help if accused wrongly because the allegation alone already puts you on some stupid list.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    5. Re:Scummy yet brilliant. by DarkOx · · Score: 4, Insightful

      We don't have "American Law" we have whatever your favorite executive agency decides to this week or worse with this person. That is the real problem.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    6. Re:Scummy yet brilliant. by VortexCortex · · Score: 4, Insightful

      But it's possession of illegal material. There are many good reasons why possession of certain stuff can be considered a crime. Toxic/dangerous stuff without a license.

      You may disagree that CP should be considered illegal material, but good luck convincing lots of people otherwise.

      On any website there could be this:
      <iframe src="http://pedo.example.com/illegal-porn.jpg" style="width:1px; height:1px; border:none" ></iframe>

      Cross site scripting and/or SQL injection could easily plant that stuff on any website, unseen. Your browser will happily and automatically download the image and put the "illegal material" in your possession.

      We don't need "good luck convincing lots of people" that this can happen to them, all we need are script-kiddies like Anonymous who'd love nothing more than to get a bunch of people wrongfully convicted of child porn possessions esp. if it means making a point about how retarded the law is.

      This stuff isn't dangerous or toxic sitting in your Internet cache unseen and unknown to anyone. It's only dangerous to have the configuration of bits on your drive because the laws have deemed it to be so. Protip: this script kiddie scenario isn't hypothetical... delete your caches regularly.

    7. Re:Scummy yet brilliant. by spiffmastercow · · Score: 4, Insightful

      I'm not so sure he was joking.. At any rate, if you call the cops they expect to arrest someone. If the real perp is too inconvenient to go after, you're the lucky winner. This is even more likely if the malware does a bunch of google searches for kiddie porn in the background

    8. Re:Scummy yet brilliant. by ObsessiveMathsFreak · · Score: 5, Insightful

      This has nothing to do with "possession" or even crime in and of itself.

      This has to do with the hysterical overreaction of the general public towards anything which is so much as suspected as being involved with or related to child pornography. Victims of this ransom-ware may well pay in fear of being ripped to pieces by an angry mob, and their fears would not be all that far fetched at this point. At the very least, they stand a good chance of having their entire life ruined should even a hint of suspicion fall on them.

      Child pornography, like all hysterias, has become an excuse for a segments of the public to indulge in chaos, anarchy and criminal behaviour in their reaction to it. Even a pointed finger can now be a life or death sentence for innocent people. This is why it was important not to let the rule of law slide on this or any other issue.

      But no. People wanted to indulge their outrage. I suppose democracies get what they deserve.

      --
      May the Maths Be with you!
    9. Re:Scummy yet brilliant. by LordLimecat · · Score: 4, Informative

      You really, really, really dont want to live in a world where vigilante justice is what passes for criminal justice.

    10. Re:Scummy yet brilliant. by 1s44c · · Score: 4, Insightful

      By 'rapist', you mean 'is accused of having consensual sex without using a condom', a minor crime in Sweden with a $750 penalty.

      If it's such a minor crime why is Sweden willing to extradite him for it? Maybe because they intend to send him to a US torture camp, something the UK is unwilling to do.

      Rape, having consensual sex without using a condom, or whatever every else Julian Assange is being accused of is just a ruse to get him somewhere the US can deport from.

    11. Re:Scummy yet brilliant. by t4ng* · · Score: 5, Informative

      Yes, because something like that could never happen in a democracy, so it must have been a joke!

    12. Re:Scummy yet brilliant. by Anonymous Coward · · Score: 4, Insightful

      I speak from personal experience. Being arrested and charged with a sex crime does fuck you for life in the U.S. I was arrested, spent 14 months awaiting my "speedy trial" and was acquitted in court. However when I purchase a gun my arrest is flagged and it takes three days for the paper work to be approved. Also I have neighbors who now treat me like dirt because the arrest is printed in the paper but the acquittal isn't. Being arrested is akin to being convicted, in the American legal system. Here, there is no such thing as the American Justice system.

  2. Re:Who would fall for a fee? by Amouth · · Score: 5, Insightful

    but even if it is only in that area - you have to prove you didn't do it, and even if you can do that you have to do it n court, even if you come away "free" then it is still there that you where once prosecuted for it, and you have to live/survive that process which will more than likely ruin your life as you know it.

    --
    '...if only "Jumping to a Conclusion" was an event in the Olympics.'
  3. Re:aka Idiot tax by SuricouRaven · · Score: 4, Insightful

    I think it's a great scam, because people are terrified of the idea of being associated with child porn. A threat like that will ensure they don't go to a repair shop, or mention it to anyone. Not the police, not friends or family. Noone. Greatly reducing the chance of the sucker being told it's a scam.

  4. Re:Who would fall for a fee? by SuricouRaven · · Score: 4, Informative

    Not for very long, though. If you follow the media, espicially the more conservative media, there is a fair bit of public outrage at the ruling - lots of headlines along the lines of 'New York legalises child pornography!'. So much that within less than a day of the ruling, the legislature was already in the process of passing a bill to reverse it. It will, without a shadow of a doubt, sail through unchallenged.
    http://www.deseretnews.com/article/765576135/New-York-bill-quickly-follows-court-ruling-on-child-porn.html

  5. Re:de-lousing... by SuricouRaven · · Score: 5, Insightful

    You are not the target of this scam.

  6. Re:Not as bad as I expected... by DarwinSurvivor · · Score: 4, Insightful

    That would also make them distributors and the target of just about every federal and most international police forces. As it stands now, it's just extorsion so as far as the governments are concerned, they're just lumped in with all the other un-prosecuted Nigerian scammers.

  7. Re:de-lousing... by AHuxley · · Score: 4, Funny

    Pay money or your IM/irc friends gets random Windows 8 questions .... interlaced with Maths 101 questions...
    It took you a long time to find Linux users, pity if they where to think of you as dual booting...

    --
    Domestic spying is now "Benign Information Gathering"
  8. I don't get it by Chrisq · · Score: 4, Funny

    Bury the old dribe somewhere unretrievable

    I guess "old dribe" must be the guy sending out these blackmail notices then.

  9. Re:aka Idiot tax by Anonymous Coward · · Score: 5, Insightful

    In most places, Illegal porn gets you a a dirty look from the judge and a fine if you are really unlucky. CP on the other hand can get you a 20+ year sentence in the US.

    It doesn't matter if the victim watches it or not. The scammers are hoping to exploit the fact that their victims would be reluctant to seek help out of fear of false prosecution, which is not as far fetched as I'd like to. Personally, I'd suggest zero-write to anyone who caught this bug. I wouldn't count on the malware authors not putting incriminating evidence on infected systems and even putting spiteful logic bombs which trigger when you clean the infection. Better paranoid than trying to reason with the pitchfork jury.

  10. It's worldwide by jimicus · · Score: 4, Informative

    I've seen a version that's been localised to the UK; apparently there are also versions localised to Canada. I haven't analysed it but it wouldn't surprise me if it's all the same trojan and it uses geolocation to display an appropriate logo.

    Brilliant scam because even if the user knows it's a load of rubbish, nobody wants to be even remotely associated with paedophilia. You'd have to be a bit of an idiot to think you could make such an accusation go away by paying a small fine - or for that matter to believe that the police's MO in these cases is to put a great big warning on your screen (rather than to arrest you at dawn and take all your computers away), but I suspect there are probably enough idiots in this world to make it profitable.

    1. Re:It's worldwide by deroby · · Score: 5, Informative

      My dad's PC had this, although apparently the creators didn't do their homework very well. Belgium having 2 (main) languages the scareware used the wrong language for this part of the country so he hardly understood what needed doing (not everybody speaks both languages). Off course the police logo etc made it look kind of daunting and -although it started up ridiculously slow- once it took over the pc became completely unusable.

      It was rather easy to get rid of (safe mode, regedit, hijack-this and then a full scan with Security Essentials -which seemingly had missed it originally!)

      The part I don't get is : how do the scammers get to their money (assuming some people are silly enough to pay) without the possibility of being traced back ?
      => shouldn't there be ridiculously easy traces to follow via paysafecard.com ??
      => worst case it should be easy enough to have these -at least!- blocked

      --
      If there is one thing to be learned on slashdot, it has to be sarcasm.
  11. Re:aka Idiot tax by Dr_Barnowl · · Score: 4, Informative

    Well, for example, porn that depicts violent acts, even between consensual adults, is illegal in the UK.

    The performers have a defence as long as the acts they participate in are acts which a person is legally able to consent to in the UK, but the photographer and others present (sound crew, director, etc) are on the hook.

    A relatively recent law as well, so not some antiquated sodomy law.

  12. As night follows day by PopeRatzo · · Score: 4, Insightful

    Who couldn't see this coming? First, you make "looking at child porn" the worstest crime imaginable, like genocide against against a million nuns, worst than murder, worst than cannibalism, worst than, I don't know, eating fatty food, and then you...PROFIT!

    Anybody want to bet that in the next few years (or less) we'll be hearing about some major politician who has (cue the somber, scary music...) looked at drawings of naked children.

    "Is he right for America? We don't think so. Paid for by Americans for Families and Stopping Immoral Behavior among People Who are Different From Us."

    --
    You are welcome on my lawn.
  13. Re:aka Idiot tax by bergelin · · Score: 4, Informative

    A translator of Manga comics recently got convicted of child pornography in the district court and the court of appeal in Sweden. This picture (nothing nasty really) was judged as child pornography by the district court, but was cleared in appeal. He was still found guilty in appeal though, but for other pictures. The case is currently being heard by the Supreme Court.
    The defendant is not a child abuser by any means, and in all likelihood hasn't got any pedophilic tendencies. He's just a fan of Japanese comics and owns a huge collection of those.