Archive for October, 2010

 

A quick lesson in internet banking

In our daily work in the field scanning computers for malware and viruses we are finding many variants of the trojans Zeus, Zbot, Hydraq, among others.  We are finding these on computers which are regularly used for internet banking and other financial transactions including using a credit card online. Some of these PC’s actually hold databases with extensive information about a company’s clients such as physical and email addresses.

These types of malicious programs assume the name of legitimate system resources, and want your money from your bank. So far they have been very successful on several continents. The fact that we are finding so many of these bugs on systems here in Perth would indicate Western Australians are also victims.

At Wired Office we are now offering an onsite service to test PC’s for the presence of trojans, and set up advanced, multilayer protection against trojan keyloggers. Keylogger programs are silent and undetectable and either record your keystrokes or hijack a machine,unknown to the user. Standard support rates apply. If you do not require scanning, or if your PC is new for example,  we can set up anti-keylogging on your PC free of charge.

More information here.

 
 
 

Bogus Microsoft scams

The methods of spammers or computer criminals can be convincing especially when they pretend to be calling on the phone from Microsoft.

I’ve had these types of calls myself. They claim to be from Microsoft calling to inform the user the PC is infected by a virus.  They offer to do a remote inspection to confirm the threat and either seek an IP address (the address of your PC on the internet) or direct the user to a spoofed Microsoft website to download a tool so the caller can take over the machine remotely.

If they want an IP address you could give them DOCEP’s DNS server address at 203.33.230.200. If they ask you to visit a Microsoft website and you are using IE8 you can see in the URL area that the main domain (microsoft.com) will be in bold, while the rest of the URL is greyed out.

But this is a lot to remember on the spot. Best to remember that Microsoft will never make an unsolicited call to you for any reason, especially if it involves remotely accessing your PC and eventually asking for money. Just as winning a lottery that you never entered in the first place is highly unlikely, so will be a friendly suppport call from a Microsoft engineer on another continent be unlikely.