/ciol/media/agency_attachments/c0E28gS06GM3VmrXNw5G.png)
Follow UsBANGALORE, INDIA: As Valentine's Day approaches, people’s thoughts turn to romance and flowers. For the cyber criminal however, it heralds another opportune moment to draw an unsuspecting user in.
/ciol/media/post_attachments/8372af5756ebd504a4814847a2731e61d21236a039f9e46959f50d27b3bed001.jpg "publive-image")
Many of the most common scams around this February rely on existing vulnerabilities in software, spam, fake sites and distraction techniques. Organised criminal units have a long history of timing their attacks to coincide with popular occasions in order to achieve maximum success. Valentine's Day 2009 is a day that is similarly marked on the criminals' calendar for targeted attacks.
In the weeks running up to February 14, many phishing emails are already doing the rounds that promote love or dating opportunities. The Websense Security labs have seen several fake Valentine’s Day sites serving up malware, an increase in adult dating and ‘healthcare’ related email spam, and blended email/web/phone techniques promoting premium rate phone services - which are a good way to make a fast buck.
The usual suspects have emerged as expected, with Valentine spam emails and Trojans. The same characteristics have been used in other recent campaigns such as Obama spam and New Year greetings cards. The public are becoming more aware of these however and it’s getting harder to trick people this way. Cyber-criminals are also taking their efforts to social networks, given its rising popularity and potential to manipulate the user through "friend" messages”.
Top three things to look out for:
1. Broken Hearts
There are a number of fake Valentine's Day sites serving up malware courtesy of the Waledac gang (or at least exhibiting the same characteristics as them). The sites show colourful images such as puppies or a picture of 12 pretty hearts and ask "Guess, which one is for you?" Unfortunately the web page is one big image and a single click from a tricked user commences the download of Trojans named “onlyyou.exe” or “youandme.exe” which are not as friendly as they sound. The Trojan can connect to remote websites to receive commands and send information about the compromised system.
2. I am your Friend
Spammers are using our appetite for social networking and turning to properties such as Twitter, Facebook and Myspace as new ways to trick users into visiting fake sites, installing viruses and spreading malware on the internet. Web spam, in blogs and on comments pages, is also on the rise. Be wary of links posted by strangers on your blog, chances are the link may not lead to you finding love they promised!
A popular technique doing the rounds at the moment is spam email pretending to originate from social networking sites – complete with love hearts and cartoon characters. If you were to click through to the link on the email the user would unwittingly download a banking Trojan designed to steal log in credentials for banking sites.
3. Money can’t buy you love
Money can’t buy you love, but it may get you a masked redirect. 70 percent of the top 100 most popular web sites either hosted malicious content or contained a masked redirect to lure unsuspecting victims from legitimate sites to malicious sites.
In fact we have seen specially created malicious sites decline as cyber criminals switch to compromising ‘trusted’ web sites. They are cashing in, literally, on our increased confidence in shopping and researching online - a lot of which happens whilst in the office. As people turn to the internet to order flowers, chocolates and other gifts – so too are the cybercriminals turning to these sites to compromise them and steal data.
The underground economy is positively flourishing as companies fail to keep up with security technology. Criminals are taking advantage of the growing number of Web 2.0 properties, which allows user generated content. More than ever, we’re seeing web sites injected with links to direct users to malicious and compromised sites. And since many email security systems lack web intelligence, spammers have also stepped up email campaigns, which contain links to malicious web pages. It’s clear that businesses need security with real-time protection, but until this becomes the norm – cybercriminals will continue stealing data and breaking hearts.”
Happy Valentines Day.
The author is regional director, SAARC & India, Websense, Inc.