For 18 months, Malwarebytes Unpacked has been bringing readers like you news about the latest cyber threats, in-depth analysis of malware and scams, and advice on keeping yourself safe online.
We have grown our team, our purview, our audience and appreciate every single reader for giving us a little bit of their time for the sake of security.
Therefore, to commemorate our time of security blogging, we’ve completely redesigning our blog, Malwarebytes Unpacked!
“Yup … you’ve got the hacker bug trojan virus, that’ll be $300″
The latest ruse put on by phone scammers is posing as the popular anti-virus AVG.
In an article posted today by Eduard Kovacs @ Softpedia, it appears that AVG is warning their users of a potential scam that has phone scammers, like the ones we have talked about extensively before, posing as their company and selling computer support.
In the past, we have mainly seen these types of scammers pretending to be from Microsoft and “Detecting Malicious Activity” on your system. Of course they end up showing you bogus data and/or connecting to your system remotely in order to make the user believe that they need to pay serious cash in order to fix their problems.
This scam lends an air of legitimacy by claiming to provide support under TechBuddy, AVG’s legitimate customer support service.
Don’t get me wrong, I love Chrome, I think it’s a fantastic browser and has a great track record of protecting users from exploits and malicious sites. However, their attempts at making it “easier” for users to find where they want to go, makes me think that their security purview isn’t focused enough on the internal threats.
So, if you use Chrome, you might have noticed that anytime you open up a window or a new tab, you get something like this:
A nice search bar, which I have no problem with, and then a listing of your most visited sites. Now, to the casual observer I am sure there is nothing wrong here. Users visit certain sites more frequently and therefore it should be easy for them to get there quickly, Chrome makes this possible.
Consider, if you will, someone who you don’t know, getting on your system or even looking over your shoulder. Maybe, they cracked your systems login password or you maybe you didn’t have one at all. Once they open the browser, they are instantly given access to not only your personal surfing habits, but also how you interact with social media, email and where you bank.
It didn’t seem too long ago everyone was aware of common scams, from Phone Scammers trying to sell you premium Microsoft support to Ransomers who claim to be from the FBI and lock down your desktop. While these are still common problems, at least we say we can identify obvious scams…until now that is.
An article by Emily Patterson of the Better Business Bureau describes a new phone scam attempting to steal unsuspecting people’s hard earned cash and, this time, they are posing as the police.
The scam works like this:
You get a call, if you have caller ID it informs you that it’s coming from your local sheriff’s office.
You pick it up and the “Sheriff” tells you that there is a warrant out for your arrest.
You can avoid being arrested by paying a fine and everything will be cleared.
To pay the fine, you need to either use a Money Order or pre-paid debit card, like MoneyPak.
Bad Guys Profit
One of the largest threats facing users today is from Phishing attacks, or social engineering attempts at getting the average person to click on a malicious link.
The most common form of phishing comes from email however, another form can come from sources like social media, such as Facebook or Google+, services that typically have anti-spam, phishing and exploit features.
Though with every successful integration of anti-spam, anti-phishing and anti-exploit functionality, the bad guys go right back to the drawing table to find a new way to make your life miserable.