Fake Microsoft Antispyware Center

[Dave M]

So what else is new? The "Microsoft Antispyware Center"

Posted in the Sunbelt blog today, Sunday, Oct. 07, 2007:
http://sunbeltblog.blogspot.com/
and more here:
http://swatrant.blogspot.com/2007/10/rogue-application-pretends-as-microsoft.html

 

[Dave M]

Additional information posted on CastleCops by
Arenlor on Sunday, 07 October 2007 @ 01:05:00 UTC

Visited on my Ubuntu, if, when the first prompt come up, you click
the red X then click cancel you will not have the file be loaded. It will
give you a nice little warning as you close the page though. Any other
combination of clicking loads the file

 

[Guest]

Thanx for the headsup Dave. Sheesh, you can't go anywhere lately without
things being a threat.

 

[Bill Sanderson]

New twist on an old game. I'm glad to see that the antiviruses are up to
dat on it. This is an interesting puzzle: If you are in a place where you
have essentially legal immunity from some large powerful entity you are
poking--how far can you go? How far should they go?

 

[Robinb]

they go too far!
robin

New twist on an old game. I'm glad to see that the antiviruses are up to
dat on it. This is an interesting puzzle: If you are in a place where
you have essentially legal immunity from some large powerful entity you
are poking--how far can you go? How far should they go?

 

[Randy Knobloch]

New twist on an old game. I'm glad to see that the antiviruses are up to dat on it.
This is an interesting puzzle: If you are in a place where you have essentially legal
immunity from some large powerful entity you are poking--how far can you go? How far
should they go?

Shouldn't this be reported to MS, Bill?
I would <g>

Randy

 

[Randy Knobloch]

So what else is new? The "Microsoft Antispyware Center"

Posted in the Sunbelt blog today, Sunday, Oct. 07, 2007:
http://sunbeltblog.blogspot.com/
and more here:
http://swatrant.blogspot.com/2007/10/rogue-application-pretends-as-microsoft.html

Reported to several departments at MS, Dave - thank you for bringing this to our
attention!

Regards,
Randy

 

[Bill Sanderson]

It was reported by third parties who I believe can be relied upon to have
done that already, but it is true that another report shouldn't hurt.

For others reading, the place to report security issues around Microsoft
products is the mail alias (e-mail address removed)

This is staffed 24 hours a day, and you should get a response indicating
receipt and perhaps some minimal information about how they've routed the
information.

Don't expect interaction via this kind of contact--this is essentially a
hotline, they'll take the report and thank you for sending it--but they do
get to the right people.

http://www.microsoft.com/security/msrc/default.mspx#EBC


--

 

[Dave M]

You're very welcome, Randy. I wanted to make this forum aware, in the
event we start getting reports of
"Ms Anti-Spyware" creating computer havoc... and you know we will. So
thanks for carrying it along to Microsoft also. As Bill indicated, it
should be interesting to see how they handle this situation.

I'm thinking some combination of lawyers, guns, or money. Well, perhaps
hold the weapons for now ;o)

 

[Bill Sanderson]

This same outfit has been at this for awhile now. I'm pretty sure they are
situated somewhere where the legal system can't be brought to bear on this
particular kind of crime.

I don't know whether it is possible to go farther--to, for example, have
warrants for arrest in a different country, and essentially prevent the
principals from travelling. However even that may not be a great threat to
the folks behind this scam.

--