Spamming Email Offers Fake AV

Thursday, November 10, 2011 @ 09:11 PM gHale

Rogue AV software mimicking popular legitimate AV solutions is hitting email boxes all over as cyber crooks hope the familiar name will entice users into buying the product.

The latest example of this approach has come to the attention of Kaspersky Lab experts by users targeted with spam emails touting an “Antivirus & Security Complete Antivirus Protection Solution” supposedly sent by Kaspersky (

Attackers Winning Security Battle
Survey: In Age of Attack, Providers Less Aware
Cyber Report: Chemical Industry Under Attack
Privacy Tougher to Practice

“The cybercriminals had done a good job: The email not only looked like an official email from Kaspersky Lab but the ‘From’ field was a good imitation as well,” said Kaspersky’s Maria Namestnikova.

While the email includes an image of the fake solution using colors similar to those used by Kaspersky, the link included in the email takes the potential victim to a page whose colors and look resemble those used by Symantec.

“To buy the program, the user had to enter their credit card details and email address so they could receive further instructions. We followed these step as part of our investigations, but received no more instructions at the email address we specified,” Namestnikova said. “It is quite possible that users could have received more instructions on how to download the fake antivirus at the time the spam was active.”

This is not the first time and will not be the last time fake AV deals end up in your email box. Users should remember no reputable company practices sending out emails like these and the best thing to do if they are looking for a good AV solution is to buy it directly from the developer or from a well-established reseller.

Leave a Reply

You must be logged in to post a comment.