Cyber criminals make big bucks with scareware
By Asavin Wattanajantra,
Cyber criminal kingpins can make profits of more than £850,000 by pushing fake antivirus software, according to research from Symantec.
The business behind these scams is becoming more organised, with Symantec revealing that it has already uncovered 250 different fake security programs – or ‘scareware’.
Other unscrupulous computer users could also cash in by joining as an affiliate on a distribution site, where they are given the tools to distribute, promote and market the fake software.
They would get paid if they tricked a user into installing the scareware, with Symantec claiming that the top affiliates could earn as much as £56,000 a month.
David Wall, a cybercrime expert from Leeds University, said that cyber criminals were seeking the victims, perpetuating the scam and collecting the money in an automated way.
“I’m not sure we’ve seen those three functions in that one package work so effectively in the past,” he told IT PRO.
Wall called it a form of "entrapment marketing" as people believed that they were buying a genuine service.
News of the scame comes as security firm Panda revealed that some cyber criminals were trying to hold people to ransom, denying users access to their computer until they paid up for fake antivirus.
Wall said one of the problems of this scam was that users were conned out of a relatively small amount of money, so it was very hard for victims to go to the police.
“The offence isn’t really serious enough to commit investigation resources," he said. "[Currently] the police only investigates frauds over a certain amount of money.”
The professor said that the National Fraud Reporting Centre could be the light at the end of the tunnel, as it could potentially investigate this type of small-scale fraud.
You may also like...
You may also like...
advertisement
Latest Security Features
Q&A: Luis Corrons on taking down cyber criminals
We talk with Panda Security's Luis Corrons about how companies and law enforcement are taking on malicious hackers.
- Are you ready for PCI compliance?
- Why has Intel bought McAfee?
- The Pirate Bay: the state of play
- The Orwellian Nightmare: Version 2.0
- Inside the mind of a social engineer
- The trials and tribulations of social networking
- NO2ID on fighting the database state
- Building a better password
- Q&A: George Kurtz, CTO, McAfee
Latest Security Reviews
Kaspersky Internet Security 2011 review
Rating: 
- G Data Software EndpointProtection Business review
- eSoft InstaGate 806 review
- M86 Security Secure Web Gateway 5000 review
- Google Maps Navigation review
- Netgear ProSecure UTM10 review
- ZoneAlarm DataLock review
- SmoothWall Guardian SWG-1208 review
- Symantec Backup Exec 2010 review
- WatchGuard XCS-770 review
advertisement
Most popular
- Nokia N8 review: First look
- Sony Ericsson Xperia X10 Mini Pro review
- Head to Head: Office 2010 vs Open Office 3.1
- Samsung Galaxy Tab review: Hands-on first look
- HP sues Hurd to halt Oracle appointment
- Gordon Brown takes leading role on the web
- Salesforce launches Chatter Mobile
- Samsung Galaxy S review
- Ofcom ups 3G power limit
- Social networking shows inner workings of business
Latest News Videos in Security
Video: Why security is everybody's responsibility
PlayRik Ferguson, senior security advisor at Trend Micro says it's up to all of us to make security work.
Whitepapers
Want more background on today's hottest IT trends?
Visit IT PRO's whitepaper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
This is avoidable
By continually using inherently week operating systems this problem will never go away. Time will tell if recent releases will make a difference.
By prjohn on Monday Oct 19
Governments - Action Required
It's about time that Governments take appropriate action to combat this and the many other forms of scams. Perhaps a website set up as a portal to legal products and sites - those that meet some form of criteria including demonstrating that their files are malware clean, providing evidence of identity - Certification might be provided subject to maintaining this clean status. Such a website might be advertised particularly through ISP's, TV and so on, in a manner which makes it well known that the portal is a means to obtain safe products perhaps even offering a guarentee. Similar sites might be offered for customers to access businesses and traders of all kinds. Should a customer have an issue with a product or service, a business might be removed from the portal, investigated and if appropriate prosecuted. If direct sales (i.e. Not via the portal) are reduced or ended, then such crimes may be harder to perpetrate. Society has to accept that certain freedoms and rights might have to be sacrificed or curtailed in order to reduce or prevent crime. Without such rules and the harsh, rigouress and exceptionless punishment of criminals in such a manner as to deter such crimes, Chaos will reign.
By Hitman101 on Tuesday Oct 20
Suckers
These things have been around for years, people should have long ago learned to not take the bait. Yet scareware is bigger than ever, there seems to be no shortage of suckers who will click on those fake security alerts. I guess there really is one born every minute.
By greenknight32 on Wednesday Oct 21