Halloween is a few weeks away, and it’s time to start working on costumes for the kids. You feel really creative this year, so you search for “Halloween costume make your own” in your favorite Internet search engine. The web site that came up at the top of the list has a link to a video that promises to show you how to make a fruit costume for under $15 in materials, requiring only basic sewing skills – just what you were looking for.
You click, and there it is, but it doesn’t play. Oh, wait, there’s a note at the bottom of the player that says, “If this video doesn’t start playing, click here to download the latest flash player.” You click.
It’s trick-or-treat time, and you’ve just been tricked!
But you don’t know it yet, so you wait for the download, and then you get a warning, saying that your computer is infected with a virus. The popup offers to do a scan, so you take the offer – after all, the window header says “Microsoft Malicious Software Removal Tool,” and you know you can trust Microsoft. As you watch the screen, you see that you have not just one but 45 instances of malware on your poor, infected PC.
The scan window offers to show you third-party software that can remove the malware, and it even evaluates each according to how well it will do against the particular problems on your PC. One vendors stands out, and it must be good, because the scan window shows you that it is rated higher than any anti-virus vendor you’ve ever heard of before.
You really want to get started on the costumes, but because you’re conscientious about your PC’s health and welfare, you follow the link to the top-rated solution. Fortunately, it’s not a budget breaker: $39.95 for a year’s license. The web page includes graphics that show several certifications that you’ve heard of, so you figure it must be safe. Not only that, but you can see from the extensive configuration options that after you register and pay for it, you’ll have some full-featured protection. Before the software can work its magic and remove the malware, you have to register and purchase a license, so you get out your credit card, pay the fee, enter various other information about yourself and submit it securely. This enables the “Remove Malware” button, and after you click it, your new anti-virus software reports that it has cleaned out all infections from your PC and you’re safe. You pat yourself on the back for finding this gem, because the major brand software you’d previously installed didn’t find any of these problems, but now you’ve got the good stuff!
Your only disappointment is that after all this, the how-to-make it video still won’t play. Disappointed, you give up on the video and head to the mall to look at the specialty shop offerings. As you climb in the car, a criminal organization on the other side of the world is bundling up your credit card data and personal information along with those of thousands of other victims, to be sold in bulk at $2 per card on one of several criminal information exchanges. Your PC is now hosting malware that has disabled your legitimate anti-virus software and left a bot in its place that can be controlled from far away when it’s time for the next exploit.
Fake anti-virus software accounts for about 15% of the malware on the web, and it’s a growth industry in which major players are profit-oriented criminal enterprises. The sophistication of their deceptions continually increases, as does the tool support available to them. For example, attackers can use special software to poison the search results from popular search engines to make their sites get high relevancy ratings. Furthermore, the alleged certifications were just graphics, not legitimate live links, and the window title you read didn’t really come from Microsoft. The download wasn’t removing malicious software – just the opposite! (Read about a warning and some recommendations from Microsoft, Watch out for fake virus alerts.)
By the way, you did watch a video, but not the one you expected. That window that claimed to show the results of a scan of your PC was a canned video that served its purpose – luring you to buy fake anti-virus software.
Happy Halloween! The scariest creatures aren’t ringing your doorbell and calling “trick or treat” – they’re sitting at computer terminals and living off your credit cards!