Scareware Rules over Antivirus

Monday, December 31, 2012 @ 03:12 PM gHale


Despite the fact scareware has been around for several years, there are still quite a few security solutions incapable of blocking it.

Scareware has remained the same as it was a few years ago, said researchers at security firm Zscaler. While the names of the applications may have changed over time, they still are pretty much the same.

RELATED STORIES
Necurs Malware Growing
Chrome Wards Off BlackHole
BlackHole Exploit Kit Details
Password Stealing Malware Incognito

A perfect example is the Win 7 Anti-Spyware 2011 piece of scareware. That threat goes undetected by most security applications, and when it finds itself on a computer, it starts causing serious damage.

It disables the firewall, the legitimate antivirus application, disables all security warnings and it creates registry entries to ensure it has full control over the infected device.

Furthermore, it wraps any executable run by the user, so when any application is run, the scareware steps into play, alerting the victim about all sorts of Trojans and worms it can clean up by registering the bogus antivirus.

While professionals can remove the scareware in a relatively short period of time, a regular user, however, the task could take quite a bit longer.



Leave a Reply

You must be logged in to post a comment.