Malwarebytes unmasks new Skype phishing scam

Cyber criminals steal validated login credentials while also deploying banking Trojan.

Malwarebytes researchers have discovered a new scam being distributed via Microsoft-owned instant messaging service Skype.

The phishing attack manifests as a message from a Skype contact, and claims the user will be able to get a free upgrade to Skype Premium by following a link contained in the message.

However, the scam steals the user's account credentials and then goes on to deliver a well-known banking Trojan onto their computer.

While you may do everything in your power to keep your data safe, your friends and family might not be so prudent.

While Skype and other messaging services have long been a popular infection vector for cyber criminals, Adam Kujawa, a malware intelligence analyst at Malwarebytes, claims this particular attack is unusual, as it checks the validity of a victim's credentials before proceeds.

In an upcoming blog post, Kujawa explains how he created a new account in the name of Sean Connery's character from Highlander, immortal Juan Sanchez villa-lobos Ramirez, in order to expose the scam.

"If you give them fake or incorrect login details, [the scam] will not proceed. So in order to test this scam without giving up my own personal information, I decided to create a new account...with the Skype name Villa-LobosRamirez," Kujawa said.

It is only once legitimate account details have been entered that the victim is taken to a page imitating the official Skype Download page, which will then attempt to install an executable file named "SkypePremiumSetup", or something similar.

A popup screen then appears, claiming the user's lifetime premium package is being activated. However, their computer is in fact being infected with a Trojan that can steal financial and online banking details.

Additionally, the victim's Skype account will now begin proliferating the scam, with a message similar to the one that originally reeled them in.

"The reality is that while you may do everything in your power to keep your data safe and secure from cyber criminals, your friends and family might not be so prudent.  With that in mind, it is important that any communication that you are not certain is coming from someone you know [is] seen as suspicious," Kujawa advises.

"The key is to always be sceptical and [take] prudent security approaches with everything you come across.  By double-checking the legitimacy of a single link, you could save yourself some serious heartache," he concludes.

Featured Resources

Unlocking collaboration: Making software work better together

How to improve collaboration and agility with the right tech

Download now

Four steps to field service excellence

How to thrive in the experience economy

Download now

Six things a developer should know about Postgres

Why enterprises are choosing PostgreSQL

Download now

The path to CX excellence for B2B services

The four stages to thrive in the experience economy

Download now

Recommended

Weakness in Mamba ransomware could help recover data
ransomware

Weakness in Mamba ransomware could help recover data

26 Mar 2021
Invoice ZLoader campaign hides within encrypted Excel docs
malware

Invoice ZLoader campaign hides within encrypted Excel docs

8 Mar 2021
MacBook users warned against EvilQuest ransomware
ransomware

MacBook users warned against EvilQuest ransomware

19 Feb 2021
Agent Tesla malware evades security controls to infect systems
malware

Agent Tesla malware evades security controls to infect systems

3 Feb 2021

Most Popular

Microsoft is submerging servers in boiling liquid to prevent Teams outages
data centres

Microsoft is submerging servers in boiling liquid to prevent Teams outages

7 Apr 2021
How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

8 Apr 2021
Hackers are using fake messages to break into WhatsApp accounts
instant messaging (IM)

Hackers are using fake messages to break into WhatsApp accounts

8 Apr 2021