DarkFiber Consulting - IT Managed Services » Malicious Code

Malicious Code Circulating via Social Security Administration Phishing Messages

DarkFiber Consulting — Thu, 10 Dec 2009 18:49:45 +0000

DarkFiber Consulting is aware of public reports of malicious code circulating via phishing email messages that appear to come from the Social Security Administration. The messages indicate that the users’ annual Social Security statements may contain errors and instruct users to follow a link to review their Social Security statement. If users click this link, they will be redirected to a seemingly legitimate website that prompts them for their Social Security number. If users enter their Social Security number and continue to the next page, they will be given an option to generate a statement. If users attempt to generate a statement, malicious code may be installed on their systems. This malicious code attempts to collect online banking traffic to gain access to the users’ bank accounts.

DarkFiber Consulting encourages users and administrators to take the following preventative measures to help mitigate the security risks:

Install antivirus software, and keep the virus signatures up to date.
Do not follow unsolicited links and do not open unsolicited email messages.
Use caution when visiting untrusted websites.
Use caution when entering personal information online.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

DarkFiber Consulting will provide additional information as it becomes available.

Tags: Bank Accounts, Caution, Email Messages, Email Scams, Malicious Code, Phishing Attacks, Preventative Measures, Security Consulting, Security Risks, Social Engineering, Social Security, Social Security Administration, Social Security Number, Social Security Statement, Social Security Statements, Traffic, Unsolicited Email, Virus Signatures

Malicious Code Spreading via IRS Scam

DarkFiber Consulting — Wed, 14 Oct 2009 10:06:52 +0000

DarkFiber Consulting is aware of public reports of malicious code circulating via spam email messages related to the IRS. The attacks arrive via an unsolicited email message and may contain a subject line of “Notice of Underreported Income.” These messages may contain a link or attachment. If users click on this link or open the attachment, they may be infected with malicious code, including the Zeus Trojan.

DarkFiber Consulting encourages users and administrators to take the following measures to protect themselves:

Review the How to Report and Identify Phishing, E-mail Scams and Bogus IRS Web Sites document on the IRS website.
Do not follow unsolicited web links or attachments in email messages.
Maintain up-to-date antivirus software.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Attachments, E Mail, Email Messages, Email Scams, Irs Web, Irs Website, Mail Scams, Malicious Code, Measures, Phishing Attacks, Social Engineering, Spam Email, Subject Line, Trojan, Unsolicited Email, Zeus

Montgomery County Animal Shelter Search Engine Poisoning Campaign

DarkFiber Consulting — Wed, 14 Oct 2009 10:06:50 +0000

DarkFiber Consulting is aware of public reports regarding a search engine result poisoning campaign affecting search results for the Montgomery County Animal Shelter. Users seeking details on rumors about the closure of a “Montgomery County Animal Shelter” may be led to click on illegitimate search results which attempt to download malicious code. The rumors are being spread via e-mail, forums, and social networking sites, usually taking the form of a plea for readers to contact the shelter and adopt animals prior to the shelter’s closing.

DarkFiber Consulting is monitoring the situation and will provide updates as they become available.

Tags: Animal Shelter Search, Animals, Attempt, Closure, Contact, County Animal Shelter, E Mail, Engine Search, Led, Mail Forums, Malicious Code, Montgomery County Animal Shelter, Plea, Search Engine Result, Social Networking Sites

Spam, Phishing, and Malicious Code Related to Recent Celebrity Deaths

DarkFiber Consulting — Thu, 02 Jul 2009 21:50:57 +0000

DarkFiber Consulting is aware of public reports of an increased number of spam campaigns, phishing attacks, and malicious code targeting the recent deaths of Michael Jackson and Farrah Fawcett. These email messages may attempt to gain user information through phishing attacks or by recording email addresses if the user replies to the message. Additionally, email messages may contain malicious code or may contain a link to a seemingly legitimate website containing malicious code.

DarkFiber Consulting would like to remind users to remain cautious when
receiving unsolicited email. Users are encouraged to take the following measures to protect themselves from these types of attacks:

Do not follow unsolicited web links received in email messages.
Install and maintain up-to-date antivirus software.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Antivirus Software, Attempt, Campaigns, Email Addresses, Email Messages, Email Scams, Farrah Fawcett, Malicious Code, Measures, Michael Jackson, Phishing Attacks, Recent Celebrity Deaths, Recent Deaths, Social Engineering, Spam, User Information, Website Consulting

Swine Flu Phishing Attacks and Email Scams

DarkFiber Consulting — Sun, 10 May 2009 06:23:29 +0000

DarkFiber Consulting is aware of public reports of email scams circulating related to the Swine Flu. The attacks arrive via an unsolicited email message typically containing a subject line related to the Swine Flu. These email messages may contain a link or an attachment. If users click on this link or open the attachment, they may be directed to a phishing website or exposed to malicious code.

DarkFiber Consulting encourages users to take the following measures to protect themselves:

Do not follow unsolicited web links or attachments in email messages.
Maintain up-to-date antivirus software.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

UPDATE: Due to these potential phishing attacks and email scams, DarkFiber Consulting encourages users to visit the Center for Disease Control (CDC) website for trusted information regarding the Swine Flu.

Tags: Attachments, Cdc, Cdc Website, Center For Disease Control, Email Messages, Email Scams, Exposed, Flu, Malicious Code, Measures, Phishing Attacks, Social Engineering, Subject Line, Swine Flu, Unsolicited Email

US Tax Season and Phishing Scams

DarkFiber Consulting — Sun, 10 May 2009 06:23:26 +0000

In the past, DarkFiber Consulting has received reports of an increased number of phishing scams that take advantage of the United States tax season. Due to the upcoming tax deadline, DarkFiber Consulting would like to remind users to remain cautious when receiving unsolicited email that could be a potential phishing scam.

Phishing scams may appear as a tax refund, an offer to assist in filing for a refund, or contain details about fake e-file websites. These messages may appear to be from the IRS and directly ask users for personal information. These messages may also contain a link and instruct the user to follow the link to a website that requests personal information or contains malicious code.

DarkFiber Consulting encourages users to take the following measures to protect themselves from this type of phishing scam:

Do not follow unsolicited web links in email messages.
Maintain up-to-date antivirus software.
Refer to the IRS website related to phishing, email, and bogus website scams for scam samples and reporting information.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Advantage, E File, Email Messages, Email Scams, Irs, Malicious Code, Measures, Phishing Attacks, Phishing Scam, Phishing Scams, Social Engineering, Tax Deadline, Tax Refund, United States, Unsolicited Email

Airline Ticket Email Scam

DarkFiber Consulting — Thu, 11 Dec 2008 20:31:24 +0000

DarkFiber Consulting is aware of public reports of an email scam circulating that is targeting holiday travelers. The email messages related to this scam appear to come from legitimate major airlines and contain a .zip attachment. This .zip attachment appears to contain a purchase invoice and flight ticket. If a user opens this attachment, malicious code may be installed on the system.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Install antivirus software and keep the virus signatures up to date.
Use caution when opening attachments.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Airline Ticket, Caution, Email Messages, Email Scam, Email Scams, Flight Ticket, Holiday Travelers, Invoice, Major Airlines, Malicious Code, Opening Attachments, Phishing Attacks, Social Engineering, Virus Signatures

Malware Spreading via Social Networking Sites

DarkFiber Consulting — Mon, 08 Dec 2008 19:48:04 +0000

DarkFiber Consulting is aware of public reports of malware spreading via popular social networking sites. The reports indicate that this malware is spreading through spam email messages appearing to come from Myspace.com, Facebook.com, and Classmates.com. The email contains a message indicating that there is a YouTube video available and instructs the user to follow the link to view the video. If users click on this link, they will be prompted to update Adobe Flash Player. This update is not a legitimate Adobe Flash Player update–it is malicious code.

DarkFiber Consulting encourages users and administrators to do the following to help mitigate the risks:

Install antivirus software and keep the virus signatures up to date.
Do not follow unsolicited links.
Use caution when downloading and installing applications.
Obtain software applications and updates directly from the vendor’s website.
Configure your web browser as described in the Securing Your Web Browser document.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Adobe Flash Player, Caution, Classmates, Email Messages, Email Scams, Information Engineering, Malicious Code, Message Indicating That, Phishing Attacks, Social Engineering, Social Networking Sites, Software Applications, Spam Email, Virus Signatures

Malicious Code Spreading Through USB Flash Drive Devices

DarkFiber Consulting — Fri, 21 Nov 2008 05:00:29 +0000

DarkFiber Consulting is aware of public reports of an increase in malicious code propagating via USB flash drive devices. Currently, there are two popular methods by which USB flash drives are being infected with malicious code. Please note that these are not the only two methods available.

The first of these methods is referred to as simple file copy. This means that the malicious code initially resides on an infected computer and copies itself to all the storage devices connected to the affected computer. This method requires the user to access the USB flash drive and execute the malicious code.

The second method is referred to as AutoRun.inf modification. This means that the malicious code alters or creates an autorun.inf file on targeted storage devices connected to the affected computer. When an infected USB flash drive is connected to another computer, the malicious code can be automatically executed with no additional user interaction.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Install antivirus software and keep the virus signatures up to date.
Do not connect an unknown or untrusted USB drive to your computer.
Disable AutoRun or AutoPlay features for removable media.
Review the Using Caution with USB Drives Cyber Security Tip for more information on protecting your USB flash drive.
Review The Dangers of Windows AutoRun Vulnerability Analysis Blog entry for more information regarding AutoRun.

Tags: Additional User, Caution, Computer Code, Cyber Security, Infected Computer, Interaction, Malicious Code, Removable Media, Security Tip, Storage Devices, Usb Devices, Usb Drive, Usb Drives, Usb Flash Drive, Usb Flash Drives, Virus Signatures, Vulnerability Analysis

U.S. Federal Reserve Fraudulent Email Scam

DarkFiber Consulting — Fri, 14 Nov 2008 00:04:48 +0000

DarkFiber Consulting is aware of public reports of a fraudulent email scam circulating via messages that falsely appear to be from the U.S. Federal Reserve. These email messages contain information about a phishing scam and links for users to follow to obtain additional information about the scam. If a user follows the links, they will be redirected to a malicious website where a PDF exploit is used to install malicious code on the affected system.

DarkFiber Consulting encourages users to do the following to help mitigate the risks:

Do not follow unsolicited links.
Use caution when visiting untrusted websites.
Install antivirus software and keep the virus signatures up to date.
Refer to the Recognizing and Avoiding Email Scams (pdf) document for more information on avoiding email scams.
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.

Tags: Caution, Email Information, Email Messages, Email Scam, Email Scams, Exploit, Federal Reserve, Malicious Code, Malicious Website, Phishing Attacks, Phishing Scam, Social Engineering, Untrusted, Virus Signatures