RSS Alerts

Related Links

Related Stories

  • Zero Day of the Dead
    The data load that has accompanied the globalization of trade would make even Atlas stagger. And that’s without the added burden of counter-terrorisAs you read this, zombie programs are flitting across the internet like a pestilence to infect and drain the life from innocent computer systems. Yet, for all the aggravation and grief they cause, you may never know you are part of a global invasion of the system snatchers, says William Knight. Unless…
  • Nine lives - when malware becomes self-modifying
    As the Conficker (aka Downadup and Kido) worm proved when it first appeared in October 2008, there's more to a piece of malware code than meets the eye, especially when it is self-updating. But can self-updating also mean self-modifying? Steve Gold investigates whether an IT security manager's nightmare has become programming reality...
  • Social networking - a risk to information security?
    As the popularity of social networking sites continues to mount, it becomes increasingly important to consider the information security risks posed in the context of a wider data loss prevention and reputation management strategy. Cath Everett reports
  • Search for security
    With more than 30 000 web pages being infected every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves.
  • Swine flu challenges information security
    The recent outbreak of swine flu has thrown up a number of topics related to information security ranging from secure sharing of data between health professionals, to spam / phishing and issues around remote working.

News

Hackers hit the road

09 February 2009

In a fresh case of social engineering, ever-resourceful hackers in the US have found a new way to direct unsuspecting users into downloading a virus, through fake parking tickets.

Upon finding the traffic violation tickets on their windscreen, drivers in Grand Rapids, North Dakota, were instructed to visit a website where they could search for photographic proof of their bad parking.

The ticket read: ‘PARKING VIOLATION: This vehicle is in violation of standard parking regulations. To view pictures with information about your parking preferences, go to [website-redacted]’.

While searching for their own cars, users would be presented with pictures of badly-parked vehicles in car parks, which had been under the ‘Photoshop’ knife to remove registration plate details.

The user would then be tricked into downloading an executable ‘toolbar’ containing a Trojan.

“Attackers continue to come up with creative ways of tricking potential victims into installing malicious software,” wrote Lenny Zeltser, anti-virus analyst at the SANS Institute. “Merging physical and virtual worlds via objects that point to websites is one way to do this. I imagine we'll be seeing such approaches more often.”

 

This article is featured in:
Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water