Trojan Impersonates MSE, Sophos Finds
Sophos, company that specializes in providing antivirus, anti-spam, spyware removal software, network and internet security, data protection, and computer security solutions, recently announced that it uncovered a new Trojan that impersonates Microsoft Security Essential (MSE), the free security software solution offered by Microsoft. Sophos classified this new rogue as Troj/FakeAV-BTN.
The goal of this Trojan is to trick the user into downloading a rogue onto his computer. Rogues, in case you don’t already know this, claim to be genuine security software applications. Once on your computer, they trick you into thinking your system is infected, then they usually ask for money to remove the infection. It is all a scam meant to trick you out of your money.
Here is how things go with the Sophos uncovered Troj/FakeAV-BTN Trojan:
First, the Trojan displays a Microsoft Security Essentials alert that says a dangerous file identified as Unknown Win32/Trojan has been uncovered.
The user will naturally want to remove the threat. The Trojan then offers the user the option to Scan online.
The Trojan will then display fake scan results for 32 different antivirus products, including Sophos’ own.
The rogue then presents the user with 5 security software solutions that can supposedly remove the threat the rogue detected (you know, the Unknown Win32/Trojan file mentioned above).
Can you guess what’s wrong with the 5 security software solutions the rogue presents? You got it, they are all rogue antivirus applications.
“This FakeAV employs a smart trick to lure the innocent into its trap when people are tired of previous fake security software with the option of paying money. Obviously, I won’t install any one of those 5 fake solutions. Neither should you,” commented Liang Zhang, SophosLabs AU.
In related news, Microsoft Security Essentials is a properly good security software solution offered by Redmond-based software giant Microsoft. Proof that MSE is a good choice came this August when Virus Bulletin (highly reputable testing organization in the industry whose goal is to measure the detection effectiveness and quality of antivirus products) gave MSE a VB100 award and then again when AV-TEST (an independent antivirus research and data security organization) said that MSE passed its test at received an AV-Test certificate.
If you would like to learn more about Microsoft Security Essentials or download the application, please click here.
The goal of this Trojan is to trick the user into downloading a rogue onto his computer. Rogues, in case you don’t already know this, claim to be genuine security software applications. Once on your computer, they trick you into thinking your system is infected, then they usually ask for money to remove the infection. It is all a scam meant to trick you out of your money.
Here is how things go with the Sophos uncovered Troj/FakeAV-BTN Trojan:
First, the Trojan displays a Microsoft Security Essentials alert that says a dangerous file identified as Unknown Win32/Trojan has been uncovered.
The user will naturally want to remove the threat. The Trojan then offers the user the option to Scan online.
The Trojan will then display fake scan results for 32 different antivirus products, including Sophos’ own.
The rogue then presents the user with 5 security software solutions that can supposedly remove the threat the rogue detected (you know, the Unknown Win32/Trojan file mentioned above).
Can you guess what’s wrong with the 5 security software solutions the rogue presents? You got it, they are all rogue antivirus applications.
“This FakeAV employs a smart trick to lure the innocent into its trap when people are tired of previous fake security software with the option of paying money. Obviously, I won’t install any one of those 5 fake solutions. Neither should you,” commented Liang Zhang, SophosLabs AU.
In related news, Microsoft Security Essentials is a properly good security software solution offered by Redmond-based software giant Microsoft. Proof that MSE is a good choice came this August when Virus Bulletin (highly reputable testing organization in the industry whose goal is to measure the detection effectiveness and quality of antivirus products) gave MSE a VB100 award and then again when AV-TEST (an independent antivirus research and data security organization) said that MSE passed its test at received an AV-Test certificate.
If you would like to learn more about Microsoft Security Essentials or download the application, please click here.
