InfoTech: US FTC closes "scareware" vendors
The USA's Federal Trade Commission has obtained orders against two companies advertising fake security products which have suckered millions into "scans" of computer systems that faked results, then encouraged the sale of "fixes" that did nothing.
Most Recent - This SectionIT Security: Hotmail.com current favourite of internet fraudsters
IT Security: Fake SpamCop e-mail targets the unwary
IT Security: fake LinkedIn e-mail draws in victims
IT Security: Panda warns of black eye over "Obama" punch video
IT security: Diablo III phishing expedition
Most Recent - Whole SiteInternet: Google to retire Checkout
F1: Wot, no race report?
InfoTech: Adobe puts its head in the Cloud
F1: the good, the bad and the tyres in Bahrain 2013 as, at last, we get fast and furious racing
Publishing: today's dumb spam
Securities: KPMG partner charged with insider trading; conspirator pleads guilty
Banking: HKMA explains internet banking security and how not to be caught in the phisherman's net
Banking: Early signs of a mortgage crisis appear again
Securities: Day Trader and Asset Manager gets fine and community service for insider trading
Pump and Dump Alert: Nuvilex Inc.
The FTC has obtained orders against two companies: Innovative Marketing, Inc. and ByteHosting Internet Services, LLC.
The FTC alleges fraud but the proceedings are in a civil court. Even so, the accounts and assets of both companies have been frozen, again in a civil action.
The companies promoted WinFixer, WinAntivirus, DriveCleaner, ErrorSafe, and XP Antivirus which the FTC says were entirely fake. Advertised by website banner ads that said that a click would result in a scan of the user's PC to identify malware, the results were always said to be positive for virus, trojan or - bizarrely - pornography.
But the results were false and designed to ensure that victims purchase a fix that, in fact, had no valid operation, according to the FTC, which warns that the "fix" program could itself be harmful.
The FTC has issued a statement (below)
Messages telling you to install and update security software for your computer seem to be everywhere. So you might be tempted by an offer of a “free security scan,” especially when faced with a pop-up, an email, or an ad that claims “malicious software” has already been found on your machine. Unfortunately, it’s likely that the scary message is a come-on for a rip-off.The free scan claims to find a host of problems, and within seconds, you’re getting urgent pop-ups to buy security software. After you agree to spend USD40 or more on the software, the program tells you that your problems are fixed. The reality: there was nothing to fix. And what’s worse, the program now installed on your computer could be harmful.According to attorneys at the Federal Trade Commission (FTC), the nation’s consumer protection agency, scammers have found ways to create realistic but phony “security alerts.” Though the “alerts” look like they’re being generated by your computer, they actually are created by a con artist and sent through your Internet browser.These programs are called “scareware” because they exploit a person’s fear of online viruses and security threats. The scam has many variations, but there are some tell-tale signs. For example:* you may get ads that promise to “delete viruses or spyware,” “protect privacy,” “improve computer function,” “remove harmful files,” or “clean your registry;”* you may get “alerts” about “malicious software” or “illegal pornography on your computer;”* you may be invited to download free software for a security scan or to improve your system;* you could get pop-ups that claim your security software is out-of-date and your computer is in immediate danger;* you may suddenly encounter an unfamiliar website that claims to have performed a security scan and prompts you to download new software.Scareware purveyors also go to great lengths to make their product and service look legitimate. For example, if you buy the software, you may get an email receipt with a customer service phone number. If you call, you’re likely to be connected to someone, but that alone does not mean the company is legitimate. Regardless, remember that these are well-organised and profitable schemes designed to rip people off.
How Do the Scammers Do It?Scareware schemes can be quite sophisticated. The scam artists buy ad space on trusted, popular websites. Even though the ads look legitimate and harmless to the website’s operator, they actually redirect unsuspecting visitors to a fraudulent website that performs a bogus security scan. The site then causes a barrage of urgent pop-up messages that pressure users into downloading worthless software.
What to DoIf you’re faced with any of the warning signs of a scareware scam or suspect a problem, shut down your browser. Don’t click “No” or “Cancel,” or even the “x” at the top right corner of the screen. Some scareware is designed so that any of those buttons can activate the program. If you use Windows, press Ctrl + Alt + Delete to open your Task Manager, and click “End Task.” If you use a Mac, press Command + Option + Q + Esc to “Force Quit.”If you get an offer, check out the program by entering the name in a search engine. The results can help you determine if the program is on the up-and-up.