The virus use the browser history for blackmail

Posted: April 3, 2013 in Security Notices
Tags: , , ,

browser history for blackmail

Blackmail

The virus has learned to use the browser history for blackmail

Fraudsters who send fake notifications on behalf of the government or law enforcement authorities that the user’s computer listed for suspicious activity, began to use the new technology. For greater credibility of its threats cybercriminals started using browsers history of victims.

Recall that extortionists usually send notice to potential victims that they have ever visited prohibited resources, or are engaged in distribution of illegal content, and so the system was subjected to blocking. To unlock the computer user to pay a fine.

Malefactors are sure that scared owners of the blocked computers won’t understand the events and silently will pay fine.

As noted in his blog, an independent researcher nick Kafeine, recently scammers started using special software, which examines the history of the browser visits a potential victim, and apply the information to their attacks more effective.

Hackers use a virus under the name Kovter which displays the counterfeit notice on behalf of the Ministry of Justice of the USA, agencies of internal security or FBI accusing the owner of the computer of loading and distribution of an illegal content. The notification contains the IP-address and the hosting of the computer name, and a list of sites from which, supposedly, was booted.

The malware checks for resources that contain illegal content in the browser history of the victim, and if found, adds the addresses found in the message. If these addresses do not have the history, the program enters a notice random web-sites that have distributed pornography or other prohibited content.

Editorial Malwarelist.net recommends to install the latest security software.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s