{"id":1233,"date":"2010-04-04T12:43:54","date_gmt":"2010-04-04T02:43:54","guid":{"rendered":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/?p=1233"},"modified":"2010-09-23T12:57:22","modified_gmt":"2010-09-23T02:57:22","slug":"fake-anti-virus-popups","status":"publish","type":"post","link":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/?p=1233","title":{"rendered":"Fake anti-virus popups"},"content":{"rendered":"

They pop up on your screen, warning\u00a0 you that your computer system is infected with all kinds of viruses\u00a0and offer to help you remove them.<\/strong><\/span><\/p>\n

Some\u00a0mimic actual system notices to leverage the trust you have in your\u00a0legitimate security software, so you go ahead and click.
\n<\/span><\/strong>By clicking it you opened the door to malware and, potentially, a host of other dangers. You\u2019ve been had!<\/strong><\/span><\/strong><\/span><\/p>\n

Those pop up messages contain “scareware”, fake or rogue anti-virus software<\/span>. <\/span>Malicious applications posing as antivirus software are not new,\u00a0they’re increasingly more sophisticated and constantly challenge legitimate AV software.<\/p>\n

“But, but, I <\/strong>have<\/strong> <\/em>AV software! The best, recommended by Bonza\u2026.”<\/p>\n

It\u2019s important to understand:<\/strong> <\/span>there is no anti-virus protection that will detect 100% of the threats out there on the World Wide Web. The point of anti-virus protection is to minimise the risk of your computer becoming infected.<\/span><\/strong><\/em><\/p>\n

Don\u2019t fall into\u00a0the trap\u00a0of believing security software (including ESET Smart Security) offers automatic protection from everything\u00a0and therefore you no longer have to\u00a0<\/strong>think, participate, control, what you click on or download.<\/span><\/span> <\/span>Anti-virus can\u2019t catch everything, even with advanced heuristics like ESET.<\/p>\n

You must stay eternally vigilant!<\/span><\/strong><\/span>
\nIf you\u2019re faced with any of the warning signs of a scareware scam or suspect a problem, shut down your browser.
\nDon\u2019t click “No” or “Cancel,” or even the “x” at the top right corner of the screen. <\/strong><\/span>Some scareware is designed so that any of those buttons can activate the malware.<\/p>\n

If you use Windows, <\/strong>press <\/span>Ctrl + Alt + Delete to open your Task Manager, and click “End Task.”<\/strong><\/span><\/p>\n

If you use a Mac, <\/span>press<\/span> <\/span>Command + Option + Q + Esc to “Force Quit.”<\/strong><\/span><\/p>\n

Make it a practice not to click on any links within pop-ups.<\/strong><\/span><\/p>\n

Bonza recommends that you take precautions to ensure your operating systems and patches are updated and your legitimate security software is current. If you receive anti-virus pop-ups, close the browser or shut down your computer system. Run a full anti-virus scan when the computer is turned back on.<\/p>\n

How to spot a fake?
\n<\/strong><\/span>1. You may get ads that promise to “delete viruses or spyware,” “protect privacy,” “improve computer function,” “remove harmful files,” or “clean your registry;”
\n2. You may get “alerts” about “malicious software” or “illegal pornography on your computer;”
\n3. You may be invited to download free software for a security scan or to improve your system;
\n4. You could get pop-ups that claim your security software is out-of-date and your computer is in immediate danger;
\n5. You may suddenly encounter an unfamiliar website that claims to have performed a security scan and prompts you to download new software.<\/p>\n

What to do to minimize the risk of a malware attack?<\/span> <\/strong>
\nTo significantly minimize your risk of infection routinely perform an On-demand computer scan.<\/span><\/strong><\/p>\n

\"ON<\/p>\n

Know what your protection status means. The ESET icon next to the system clock will stay green as long as maximum protection is ensured. If it turns yellow, maximum protection may not be ensured and, if it turns red, maximum protection is not ensured.<\/p>\n

BAD STUFF DEFINITIONS<\/span><\/p>\n

Virus
\n<\/span>A Virus is a program that is activated by attaching copies of itself to executable objects. Viruses can reach your computer from other infected computers, via data medium (CD, DVD, etc.) or through a network (local or Internet). There are several types of viruses:
\nFile viruses: File-infecting viruses attack executable programs, such as all files with \u201c.exe\u201d and \u201c.com\u201d extensions.
\n\u00a0
\nScript viruses
\n<\/span>Script viruses are a subset of file viruses, written in a variety of script languages (VBS, JavaScript, BAT, PHP, etc.). They either infect other scripts (e.g., Windows or Linux command and service files), or form a part of multi-component viruses. Script viruses are able to infect other file formats, such as HTML, if the file format allows the execution of scripts.
\n\u00a0
\nBoot viruses
\n<\/span>Boot viruses attack boot sectors (removable media boot sector or hard disk master boot sector) and set their own loading routines at start-up.
\n\u00a0
\nMacro viruses
\n<\/span>Macro viruses attack documents where other commands (macros) can be inserted. These viruses are often imbedded within word processing or spreadsheet applications, since macros are easily inserted into these types of files.<\/p>\n

Viruses can also be classified according to the way they perform their action. While direct action viruses perform an action immediately after the infected object is activated, resident viruses stay and work in the computer\u2019s memory.<\/p>\n

Worm
\n<\/span>A worm is an independent program that replicates its copies across the network. Unlike a virus (which needs the infected file to be copied in order to replicate itself), the worm spreads actively by sending copies of itself via LAN or Internet, email communication, or through operating system security bugs.<\/p>\n

They can also bring with them additional malware (such as installing backdoor programs), though this behaviour is not strictly limited to worms. Worms can cause a great deal of damage\u2013often they are used to \u201cjam\u201d communication channels by means of a DoS attack. A worm is capable of spreading worldwide, via the Internet, in minutes.<\/p>\n

Trojan
\n<\/span>A Trojan is a malware program that, unlike viruses or worms, cannot copy itself and infect files. It is usually found in the form of an executable file (.exe, .com) and does not contain anything aside from the Trojan code itself. For this reason, the only solution is to delete it.<\/p>\n

Trojans have various functions\u2013from keylogging (they log and transmit every keystroke), to deleting files or disc formatting. Some contain a special feature that installs a backdoor program\u2013a client-server application that grants the developer remote access to your computer. Unlike common (legitimate) software with similar functions, it installs without the consent of the client computer.<\/p>\n

Adware
\n<\/span>Adware is short for advertising-supported software, which is software dedicated to displaying advertisements. Adware works by displaying pop-up windows during Internet browsing, by setting various websites as your homepage or by opening a special program interface window.<\/p>\n

Adware is often installed bundled with free-to-download programs, and the client is usually informed of this in the End User License Agreement. Adware advertisements allow freeware developers to earn revenue by offering program features available only with the paid version. In most cases, installation of adware falls within legal guidelines\u2013there are many legitimate advertising-supported programs. However, issues such as the assertiveness of advertisements as well as their content can make the legality of some adware questionable.<\/p>\n

Spyware<\/span>
\nSpyware is software that uses the Internet for collecting various pieces of sensitive information about the user without his\/her awareness. Some Spyware programs search for information such as currently installed applications and a history of visited websites. Other Spyware programs are created with a far more dangerous aim: the collection of financial or personal data for the purpose of Identity Theft.<\/p>\n

Riskware
\n<\/span>This type of malware includes all applications that increase the user\u2019s security risk when running. As with spyware and adware installation, riskware installation may be confirmed by license agreement. \u201cDialers\u201d are a common example of Riskware\u2013programs that divert connection to a preset paid number. Such programs can be legally used for Internet service payments, but they are often misused and the diverting occurs without the user\u2019s awareness.<\/p>\n

Dangerous applications
\n<\/span>A dangerous application is the term used for legal programs that, though installed by the user, may subject him\/her to security risks. Examples include commercial keylogging or screen capture, remote access tools, password-cracking and security testing programs.<\/p>\n

Hoax
\n<\/span>A hoax is deliberate misinformation sent by email, and they are spread with the help of an unsuspecting or uninformed public. Hoaxes are typically designed to get a user to do something they should not do. Malicious hoaxes often advise users to delete valid operating system files, claiming that the file is a dangerous virus.<\/p>\n

In many cases, hoaxes refer to a credible institution\/company in order to gain the reader\u2019s attention. For example, \u201cMicrosoft warns that\u2026\u201d or \u201cXXX announced\u201d. These messages often warn of disastrous or even catastrophic consequences. The warnings have one thing in common \u2013 they urge users to send the messages to everyone they know, which perpetuates the life-cycle of the hoax. 99.9% of these types of messages are hoaxes.<\/p>\n

Hoaxes cannot spread by themselves, the only way to protect yourself is to verify the authenticity of an email message before taking any action.<\/p>\n

Scams
\n<\/span>Scams are deceptions perpetrated on computer users for the purpose of financial gain or identify theft. One of the most common scams involves an unsolicited fax, email, or letter from Nigeria or other West-African nation. The letter will appear to be a legitimate business proposal, but will require an advanced fee from the target. The proposal is of course fraudulent, and any fees paid by the target are immediately stolen.<\/p>\n

Another common form of scamming includes phishing email messages and websites. The purpose of these scams is to gain access to sensitive data such as bank account numbers, PIN codes, etc. Access is usually achieved by sending email masquerading as a trustworthy person or business (financial institution, insurance company).<\/p>\n

The email (or website that the user is directed to) can look very genuine and will contain graphics and content that may have originally come from the source that it is impersonating. The user will be asked to enter personal data such as bank account numbers or usernames and passwords. All such data, if submitted, can easily be stolen and misused.<\/p>\n

It should be noted:\u00a0<\/strong><\/span>banks, insurance companies, and other legitimate companies will never request usernames and passwords in an unsolicited email.<\/p>\n","protected":false},"excerpt":{"rendered":"

They pop up on your screen, warning\u00a0 you that your computer system is infected with all kinds of viruses\u00a0and offer to help you remove them. Some\u00a0mimic actual system notices to leverage the trust you have in your\u00a0legitimate security software, so you go ahead and click. By clicking it you opened the door to malware and, […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[373],"tags":[184,185,188,187,186,182,180,177,181,183,179,178],"aioseo_notices":[],"_links":{"self":[{"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1233"}],"collection":[{"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1233"}],"version-history":[{"count":17,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1233\/revisions"}],"predecessor-version":[{"id":2638,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1233\/revisions\/2638"}],"wp:attachment":[{"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1233"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1233"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bonzamobilecomputerrepairs.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1233"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}