News
Panda Security’s weekly report on viruses and intruders
June 2009 by Panda
This week’s PandaLabs report includes information about the AntivirusDoktor adware, the Sinowal.WHZ Trojan, a dangerous SEO attack and an attack that affects Twitter users.
Like all fake antivirus adware, AntivirusDoktor is designed to make users believe their computers are infected. The tool performs a false scan of the affected system. Then, it shows a screen as if the computer were infected by dozens of virueses.
AntivirusDoktor then offers users the option to eliminate the malware by purchasing a paid version of the fake antivirus. The objective is to profit financially from selling fake antiviruses.
If users do not purchase the paid version, the antivirus displays a window every now and again indicating the computer is infected and prompting users into purchasing the paid version.
Sinowal.WHZ, on the other hand, is a Trojan distributed through emails that purport to come from UPS. Users are informed via email that the service was unable to deliver the packet sent to a recipient on a specific date. Additionally, users are prompted into opening the attached file including the receipt.
"Users probably have not ordered a delivery on the mentioned date, and will probably open the attached file in case they are charged for a service they have not ordered," explains Luis Corrons, technical director of PandaLabs.
If users open the attached file, they will really be downloading a copy of the Trojan onto their computer. Like most of the variants of this family, Sinowal.WHZ is designed to steal infected users’ bank details.
PandaLabs has also informed this week about an attack designed to distribute fake antiviruses using Twitter, one of the most popular 2.0 Web services.
Additionally, PandaLabs has informed about a BlackHat SEO attack on search terms like Air France, YouTube, E3, Microsoft and Project Natal.
More information about these and other malicious codes is available in the Panda Security Encyclopedia.
Finally, Panda Security has launched a page for users to relate their experiences with malware (whether they have fallen victim to money or data theft, etc.). Users who send their comments will receive a free download of Panda Internet Security 2009 with two months’ services.
