Scareware makes it way to mobile devices…

image

 

Well, I suppose it had to happen sooner or later
http://krebsonsecurity.com/2012/06/beware-scare-tactics-for-mobile-security-apps/

 

Image source: krebsonsecurity

 

According to Brian’s article, the advertisement linked to in the overlay image (now gone, apparently) was hosted by mobilevisitor.org – that domain is reported as new, having been created on 6 June 2012, and with its ownership hidden behind WhoisGuard.

There are seven websites at the same IP address:

mobfreebies.com – created 19 June 2012, WhoisGuard protected
mobgifts.org – created 11 June 2012, WhoisGuard protected
mobilevisitor.org – created 5 June 2012, WhoisGuard protected
mobprizes.com – created 27 May 2012, WhoisGuard protected
mobrewards.org – created 7 June 2012, WhoisGuard protected
newnotice.org – created 14 June 2012, WhoisGuard protected
rewardstoday.org – created 9 June 2012, WhoisGuard protected

 

I would recommend those domains be treated with extreme caution.

Published Fri, Jun 22 2012 12:02 by sandi

Comments

# re: Scareware makes it way to mobile devices…

Thursday, July 05, 2012 12:08 PM by . (dot)

WhoisGuard = Enom.com as far as I'm concerned.  There's the Well-Known Culprit.  Enom = Rogue registrar.