Microsoft Security Essentials is a legitimate antimalware app, but a new rogue antivirus attack hijacks the brand as well
Microsoft Security Essentials is a free anti malware protection program from Microsoft, but a new malware threat identified by security software vendor F-Secure is also masquerading as Microsoft Security Essentials. You need to avoid that one.
The new malware attack is distributed through a drive-by download as either hotfix.exe or mstsc.exe, but as both sound to be legitimate file names that might not raise red flags with some users.
The "alert" from the threat steals the Microsoft Security Essentials brand, including the little blue fortified castle icon. The software then displays a seemingly comprehensive list of anti malware solutions, including all of the top names that users are familiar with such as Trend Micro, McAfee, Panda, and Symantec and identifies those that are capable of detecting and blocking this nefarious threat.
The F-Secure blog explains, "Surprisingly, the only products that seem to be capable of handling the infection are AntiSpy Safeguard, Major Defense Kit, Peak Protection, Pest Detector and Red Cross. Never heard of these? No wonder. They are all fake products."
The attackers are counting on users being naive enough to take the bait and agree to be "saved" by purchasing one of these awesome anti malware tools to help eradicate the threat. But, since these are all rogue antivirus programs what you really end up with is some sort of Trojan that opens the system up to further malware compromise and exploit.
Legitimate Microsoft Security Essentials is an anti-malware application. It is offered for free by Microsoft, and is in fact a very capable defense against malware. Microsoft just recently expanded the availability of Microsoft Security Essentials to small businesses as well, making it free to install on up to ten PCs.
F-Secure detects this new rogue Microsoft Security Essentials threat as Trojan.Generic.KDV.47643.
0 comments:
Post a Comment