A new cloned application from the WiniGuard family of rogues has now been released. This one is called SiteAdware.
Rogue security software, often referred to as scareware, is one of the biggest challenges that computer users are faced with right now. Taking the form of legitimate-looking anti-virus, anti-spyware and anti-malware products, these rogue applications look to be beneficial from a security perspective but provide little or no security, generate misleading alerts, or attempt to lure users into participating in fraudulent transactions - blurring the lines between genuine software and applications that put you in harm’s way.
In order to help you clearly see what programs are considered rogue – and avoid them – Lavasoft Malware Labs is proud to introduce a brand new site: the Rogue Gallery.
There's a new Trojan out there that will cause annoying pop-ups and change the desktop background to entice victims to purchase their services. The new desktop background will appear like this:
The makers behind the Winiguard family never give up. They almost release a new clone application on a daily basis, and this time the rogue is named BlockProtector.
Albin
Lavasoft Malware Labs
A new wave of scam e-mails are now hitting victims around the globe. They usually appear to come from trusted friends and look like this:
Two new rogue applications from the Winiguard family have been released. The people behind these fraud tools constantly change the names of their applications and move them to new servers.
Lavasoft Malware Labs has spotted a new rogue application called Green AV. It will give exaggerated threat reports on the compromised computer, then ask the user to purchase a registered version to remove threats which don’t exist.
I believe that every person who has used IM-clients for a while is familiar with messages like the one shown below. These messages are auto-generated by worms which harvest people's address book/contact list.
The KoobFace worm is still causing troubles in the wild. The picture below shows a malicious link which spreads through popular social networks. The link is sent from a trustworthy source (friends) inside the social network. A majority of users will most likely check it out.