iPhones and Ice Buckets used to promote junk mailings: Kaspersky
By Digital News Asia December 5, 2014
- Spam about the iPhone 6 started long before official presentation by Apple
- Malware in Ice Bucket email allowed criminals to take control of computers
THE launch of iPhone 6 and the Ice Bucket Challenge were the two main topics that spammers used to promote junk mailings in the third quarter of 2014, according to Kaspersky Lab.
Spammers were keen to exploit the popularity of the Apple iPhone smartphone, the company said in a statement.
Criminals started sending out unwanted messages about the iPhone 6 long before the official presentation was held by Apple Inc at the beginning of September.
The new smartphone was offered as a prize for different marketing contests and surveys. There were also fraudulent mailings offering big discounts on the official price of the new model.
None of these offers had any truth in them; they were solely used to attract users to a fraudulent scheme or a web service that the spammers wanted to promote, Kaspersky Lab said.
Phishers were also keen to capitalise on interest in the iPhone. Different campaigns throughout the whole quarter used the Apple brand, and each news hook involving the company and its products was pounced upon by fraudsters.
Kaspersky Lab experts saw several instances where a rapid increase in Apple-related phishing detections could be linked to the launch of new products, such as new MacBooks (end of July) and iPhone 6 (beginning of September).
Fraudsters also actively reacted to the news of celebrities being hacked online, a story that reportedly involved Apple cloud services being compromised.
Interestingly, this is very typical behaviour for fraudsters. Last year Kaspersky Lab experts registered an increase in detections on product launch dates.
The Ice Bucket Challenge, a popular activity asking participants to douse themselves with cold water and make donations to Project ALS, an organisation that fights Amyotrophic lateral sclerosis, was another big topic for criminals.
In the last quarter Kaspersky Lab experts detected malicious spam mailings inviting victims to watch the video of another participant.
However the attachments in these messages contained the malicious Backdoor.Win32.Androm.euop program, allowing criminals to take control of the compromised computer.
“Although we’ve seen a small decrease of the amount of spam in email traffic, some warning trends are still clear,” said Tatyana Shcherbakova (pic), senior spam analyst at Kaspersky Lab.
“We detected a lot of malicious attachments targeting users’ private data, including financial information, and the number of detections of phishing webpages that target users’ money grew significantly.
“We expect that these trends will continue into the fourth quarter,” she added.
Spam and phishing in Q3 2014:
- Spam accounted for 66.9% of all email traffic in Q3, 1.7 percentage points less than in Q2.
- The United States (14% of spam), Russia (6.1%) and Vietnam (6%) were the three biggest sources of spam in Q3.
- The ranking of malicious attachments detected by Kaspersky Lab products in spam was topped by Trojan.JS.Redirector.adf – a trojan that redirects users to a malicious page. This malware scored 2.8% of detections reported by mail antivirus.
- Andromeda malware, which hands criminals stealthy control over victim PCs, led the ranking of the most widespread malicious families: almost 12.35% of all malicious software detected by Kaspersky Lab technologies in spam belongs to this family. Second place is held by the Zeus/Zbot family that targets online banking users, with 10.59% of detections by mail antivirus.
- Phishing that targeted online financial services accounted for 38.23% of all detections registered by Kaspersky Lab products. That is 13.39 percentage points more than in Q2.
- Phishing against banks showed the highest growth rate in the financial category, at plus 6.16 percentage points.
- The vast majority of phishing detections in the payment systems category were targeting users of PayPal (32.08%), Visa (31.51%) and American Express (24.83%).
Phishers taking advantage of iPhone launch, especially in Malaysia!
Naked celebrity pictures: How safe is your cloud?
Every third phishing attack aimed at stealing money: Kaspersky Lab
Phishers and scammers targeting the World Cup: Kaspersky
For more technology news and the latest updates, follow @dnewsasia on Twitter or Like us on Facebook.