Users are promised free access to “eye-catching” content, only to find themselves being… blackmailed.
 |
| Source: SecurityLabs |
Using enticing pornographic websites as bait, the new spyware program has silently infected systems and shamelessly demands that users purchase software… to eliminate it.
According to security firm Panda Software, the Trojan known as DigiKeyGen exploits a weakness in user psychology by luring them with passwords (allegedly) granting access to various paid xxx websites. However, upon clicking the attached file, spyware and a spyware removal application are automatically installed on the user’s computer without their knowledge.
Subsequently, DigiKeyGen will alert users that their computers are infected with spyware, claiming that victims can only clean their systems with the accompanying spyware removal software for a price of $50.
“You must always be cautious of enticing offers that seem free and require nothing in return“, said Luis Corrons, director of Panda Software. He also emphasized that this technique employed by hackers is not new at all.
“Cybercriminals often utilize very traditional and familiar deceptive tactics, yet users still fall for them. This is primarily because they are complacent and unaware that risks lurk behind every seemingly harmless action, such as downloading a small program or visiting a particular website.”
This morning, security firms also warned users about a Trojan posing as a Microsoft message designed to steal user passwords.
This Trojan claims that Microsoft has just discovered a security vulnerability and provides instructions for the recipient on how to download a patch. However, the link provided directs victims to a phishing website where the Trojan will automatically install itself.
Thien Y
