Scam/Hijack Warning
Ran across this today: (Screenshot of ia-scanpro.com scam page)
Note the faked window decoration, title, and icons/sidebar (all meant to deceive you into thinking the page is MS-Windows(tm) explorer giving you the warning), and the URL.
Now, I run Linux, which I assume is why it couldn't find my "Local Disc" drives, so it's laughable that the "scan" "found" three Win32 viruses.
However, as many of you do not run Linux, it is not laughable for you. This page contains deliberately deceptive elements, and you may not have an easily distinguishable window decoration theme that you can tell does not match the image in the screenshot. And my research indicates that this page is either an attempt to hijack your browser (given the layout and the "My Computer" title, I'd guess the primary target is MSIE; Opera and Firefox don't display local folder contents that way, TTBOMK.) or an attempt to propagate trojan horse software (Sources: one two).
* Be alert. Use common sense. These are your best tools of protection.
* Run antivirus and anti-spyware programs regularly.
* Research and secure your operating system.
* Use alternative browsers, e-mail clients, and/or operating systems.
* Turn off unnecessary features (may include JAVA, JavaScript, Flash, animated images, ActiveX, ActiveScripting, all images), applications (may include tickers, system tray widgets, ad-supported software), and services (may include UPnP, Windows(tm) Messenger, and many things you don't even know about; Check GRC's Web site for more information on hidden services).
* Install a personal/Check your existing firewall (GRC - Click on Shields Up for incoming test AND GRC - Download and run LeakTest for outgoing test). If you need a firewall, check GRC's Firewall Scoreboard and decide which one to get. For MS-Windows(tm) partitions, I recommend TPFW, which is what I use when I have a running Win32 partition.
Be safe!
Note the faked window decoration, title, and icons/sidebar (all meant to deceive you into thinking the page is MS-Windows(tm) explorer giving you the warning), and the URL.
Now, I run Linux, which I assume is why it couldn't find my "Local Disc" drives, so it's laughable that the "scan" "found" three Win32 viruses.
However, as many of you do not run Linux, it is not laughable for you. This page contains deliberately deceptive elements, and you may not have an easily distinguishable window decoration theme that you can tell does not match the image in the screenshot. And my research indicates that this page is either an attempt to hijack your browser (given the layout and the "My Computer" title, I'd guess the primary target is MSIE; Opera and Firefox don't display local folder contents that way, TTBOMK.) or an attempt to propagate trojan horse software (Sources: one two).
* Be alert. Use common sense. These are your best tools of protection.
* Run antivirus and anti-spyware programs regularly.
* Research and secure your operating system.
* Use alternative browsers, e-mail clients, and/or operating systems.
* Turn off unnecessary features (may include JAVA, JavaScript, Flash, animated images, ActiveX, ActiveScripting, all images), applications (may include tickers, system tray widgets, ad-supported software), and services (may include UPnP, Windows(tm) Messenger, and many things you don't even know about; Check GRC's Web site for more information on hidden services).
* Install a personal/Check your existing firewall (GRC - Click on Shields Up for incoming test AND GRC - Download and run LeakTest for outgoing test). If you need a firewall, check GRC's Firewall Scoreboard and decide which one to get. For MS-Windows(tm) partitions, I recommend TPFW, which is what I use when I have a running Win32 partition.
Be safe!