NEW DELHI: Websense Security Labs has received reports of users being lured to install malicious code via Short Message Service (SMS) messages. Victims receive an SMS message on their mobile phone, thanking them for subscribing to a fictitious dating service. The message states that the subscription fee of $2.00 per day will be automatically charged to their cell phone bill until their subscription is cancelled at the online site. Users who visit the site to unsubscribe from the service are prompted to download a Trojan bot. The site does not attempt to exploit any vulnerability and instead, the attacker provides instructions to bypass the Internet Explorer security warning prompt. Commenting on this trend, Surendra Singh, Head South East Asia and India, Websense said “We're seeing the next evolution of blended threats exploiting a new attack vector - SMS over a mobile phone. There has been much talk of security risks associated with mobiles for years and they are now becoming reality. The concern of $2 a day charge is enough to make even the least PC savvy person take action to ensure they have 'unsubscribed' - and thus, unwittingly get tricked into downloading malicious code. Using a web security solution is the first line of defence for any PC user so that they don't access the infected website. However, this particular incident shows just how difficult it is to prevent such a sophisticated social engineered attack using both mobile and web." © CyberMedia News
Eco-friendly IT process not only makes a good environment sense, but also a very good business sense. Join us in this initiative that protects nature and your business.
know more..
