Security Intelligence Report v10 – A Deeper Look at “Scareware”
Microsoft released their latest Security Intelligence Report back in June. You can find a copy here:
http://www.microsoft.com/security/sir/default.aspx
The most worrisome thing that I read in a discussion about the latest report (you can find the discussion here) is that:
- 27.5% of computers infected with Win32/InternetAntivirus were also found to have a password stealer/monitoring tool installed.
- 18.8% of computers infected with Win32/InternetAntivirus were also found to have a Trojan Downloader/Dropper
- 16.9% of computers infected with Win32/InternetAntivirus were also found to have a "miscellaneous" Trojan installed.
So, more than 1 in 4 victims of a “scareware” infection are also at risk of having their bank account passwords stolen, as well as their social networking passwords, and every other password they may have. The negative implications of a scareware infestation are far more wide reaching than having to cancel your credit card and struggle to get the scareware off your computer.
If you encounter a computer with scareware installed, don’t just reformat the machine, or devote time to removing the scareware ok? Make it standard operating procedure to advise all users of that computer to change all online passwords and monitor their bank accounts, email accounts, social networking accounts etc for unusual activity.