Skype Worm Spreads Ransomware, Botnet Links

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), National security, Terrorism, Cyber Terrorism & Related Crimes, Social Media, Technology & Digital Security  Comments Off
Oct 132012
 

Skype Worm Spreads Ransomware, Botnet Links

Security researchers at Trend Micro and Sophos are warning Skype users to be wary of links that are social-engineered to lead users to malware.

 

eWeek News
by Brian Prince
October 12, 2012

 

Security researchers at Trend Micro and Sophos are warning Skype users to be wary of links that are social-engineered to lead users to malware.

 

Security researchers are warning Skype users about an ongoing attack that dupes people into loading a link that spreads malware

According to Trend Micro, the attack has resulted in infected users spamming their contact lists with messages in both English and German. The English version of the message states: “lol is this your new profile pic?” along with a URL. The message in German is similar.

In both cases, the shortened URL eventually redirects to a download on hotfile.com that pulls down an archive named “Skype_todaysdate.zip” containing a single executable file of the same name, explained Rik Ferguson, director of security research and communication at Trend Micro, in a blog post. The executable, he added, installs a variant of the Dorkbot worm.

“Since we added detection for the two elements of this attack—respectively TROJ_DLOADER.IF for the initial dropper and WORM_DORKBOT.IF for the Dorkbot component—we have upwards of 400 detections in less than 12 hours,” he told eWEEK, adding that those statistics only cover Trend Micro customers. “These are represented in every continent with a relatively even spread.”

Once on the system, the Dorkbot variant appears to initiate a click fraud scheme and ropes the compromised machine into a botnet, Ferguson noted in his blog post. The malware subsequently installs a ransomware variant that locks the user out of their machine and notifies them that their files have been encrypted and that they will be deleted unless the victim hands over $200 in 48 hours.

Ransomware has been on the rise of late. According to security vendor McAfee, the number of new ransomware samples increased by roughly 50 percent between the first and second quarters of the year. All totaled, the number of new ransomware threats jumped to more than 120,000 during the second quarter.

Graham Clulely, senior technology consultant at Sophos, noted that there have been many variants of the Dorkbot attack spotted in the last year or so through Facebook and Twitter.

“The threat can also spread via USB sticks, and various instant messaging protocols,” he blogged. “The danger is, of course, that Skype users may be less in the habit of being suspicious about links sent to them than, say, Facebook users. Always remember to be suspicious of unsolicited out-of-character messages sent to you by your online friends. You don’t know that it was a friend who sent you the message, all you know is that it was their account which posted it to you … and who knows if it was compromised or not?”

In a statement, Skype said it is aware of the attack.

“Skype takes the user experience very seriously, particularly when it comes to security,” a spokesperson told eWEEK. “We are aware of this malicious activity and are working quickly to mitigate its impact. We strongly recommend upgrading to the newest Skype version and applying updated security features on your computer. Additionally, following links—even when from your contacts—that look strange or are unexpected is not advisable.”

Direct Link:  http://www.eweek.com/security/skype-worm-spreads-ransomware-botnet-links/

How to Avoid Becoming a Victim of ‘Sextortion’

 Articles of Interest, Investigative, Law Enforcement, Social Media, Technology & Digital Security  Comments Off
Nov 052011
 

How to Avoid Becoming a Victim of ‘Sextortion’
Nov 2, 2011
By Katie Gatto, SecurityNewsDaily Contributor

Earlier this year, naked photos of Hollywood starlet Scarlett Johansson made their way onto the Web. The photos, which Johansson had taken herself with her smartphone, were posted on a variety of different sites, and then went viral.

It seems that lately, such things have been happening to a whole host of celebrities, including Christina Aguilera, Ali Larter, Miley Cyrus, Jessica Alba, Demi Lovato, Selena Gomez and Vanessa Hudgens. No doubt they have something to worry about — but as it turns out, so do normal people.

It’s a process called “sextortion,” and it’s exactly what it sounds like: sexual extortion. It all begins when someone gets their hands on a racy photo of you. It could be that your phone got stolen, or that an ex-boyfriend decided sharing those nude pictures was a fun way to get over you, or that someone broke into your home computer and programmed the webcam to take photos of you without your knowledge.

“I just could not believe that this was actually happening to me,” said M, a sextortion victim who wished not to be identified by his full name, “I thought it was a prank, but it wasn’t.”

It seems like a nightmare scenario, but it happens to real people. Luis Mijangos of Santa Ana, Calif., was recently sentenced to six years in prison for hacking into the computers of more than 100 women and teenage girls. If he found nude photos, Mijangos would contact the women and threaten to post the images online unless they provided more naked photos.

A Florida man is currently serving a five-year sentence after his July 2011 conviction for doing the same to at least 19 women, and a California man is facing six years after he admitted using Facebook to take over women’s email accounts and blackmail them.

Men are not exempt from becoming victims of the disturbing trend. In 2008, several male students at Eisenhower High School in New Berlin, Wis., were tricked into sending naked photos of themselves via instant messaging by a classmate, which he then used to sextort at least 31 of them, as well as forcing several to have sex with him. That scheme sent him to prison for 15 years.

“I was almost relieved when I found out that it wasn’t my fault,” said M of his own case, though the expression on his face was less than relieved. “My boyfriend at the time got a virus on his Droid from an app he downloaded, and that is how my [lewd] shots got out.”

Even though M’s boyfriend claimed innocence at the time, it still ended their relationship.

“I thought he had posted them online,” said M. “They were only for him. I kept thinking if he would do that to me and then lie, how could I trust him about anything else?”

So how do you protect yourself from sextortion? Well, there are a lot of little things you can do.

Keep your pictures PG-rated

First and foremost, do not text, email or post online explicit photos of yourself. Remember that once you put an image out there, you lose control of it, even if that image is hidden behind a password lock.

“We tend to think of our email accounts as our own private space,” M said. “But if a company owns that space, you’ll never know how secure they really are. If I send my boyfriend a shot of me while he’s away, it can go anywhere. That can ruin relationships and careers, believe me. It’s not worth taking the photo. Pick up a phone … Your new boyfriend will appreciate it when he doesn’t have to explain to all his friends why they can see you naked online.”

Update your anti-virus software

A good piece of anti-virus software can help to keep you safer from a variety of different types of attacks, including sextortion, but if you do not update it regularly, it won’t be effective. Make an update a part of your weekly routine. Better yet, allow your anti-virus software to auto-update itself, and you will never have to think about it again.

Unplug or disable your Webcam when you’re not using it

Many sextortion victims didn’t mean to take, or share naked images of themselves. To keep from being filmed while you are changing clothes, be sure to unplug or disable your webcam when you’re not using it. This will keep you safe from prying electronic eyes. If you have a system with a built-in camera, then a small piece of electrical tape should be able to cover the lens without damaging it.

Use your common sense

This one may sound obvious, but one brazen series of attacks was perpetrated by a man who convinced women that they needed to bring their laptops near steam to clear out a sensor. Predictably, the women took the machines into the bathroom during their next shower, and the man was able to watch them bathe. Have the common sense to double-check dubious instructions with a second source — it can save you a lot of trouble in the long run.

If you believe you have been the victim of sextortion, file a report at http://www.ic3.gov/default.aspx. This cybercrime task force is a joint undertaking between the FBI, the National White Collar Crime Center and the Bureau of Justice Assistance. To be on the safe side, file the report using a computer that you are certain has not been breached, such as the ones at your local library or school.

Direct Link: http://www.securitynewsdaily.com/how-to-avoid-sextortion-1297/

Criminal Cops: Foxes in the Chicken Coop? Allegations against a Los Angeles County station captain could just be the tip of a very dirty iceberg.

 Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Investigative, Law Enforcement  Comments Off
Nov 032011
 

Criminal Cops: Foxes in the Chicken Coop?
Allegations against a Los Angeles County station captain could just be the tip of a very dirty iceberg.
September 15, 2011
by Dean Scoville

While the chronology of our careers within the Los Angeles County Sheriff’s Department overlapped, I don’t know Bernice Abram. The first time that the Carson Station captain registered on my radar was in a recent Los Angeles Times article detailing an operation in which federal agents heard a woman’s voice—allegedly Abram—discussing marijuana transactions with drug traffickers.

The sheer imagery of the scene is intriguing: Federal agents sitting around looking like so many dogs in those old RCA logos—heads canted, listening intently, more than a little curious as to what the hell they’re hearing, and hopefully incredulous of it. Once saddled with their concerns, these investigators brought them to the attention of LASD and Abram was placed on leave as of last April (the matter has only belatedly come to light after news media inquiries were made into it).

I’m sure that Abram would be pleased to know that I extend her the same benefit of the doubt that I would to, say, a “person of interest.” I mean, sometimes cops do screw up; that is, the cops doing the investigations. LAPD Chief Charlie Beck’s assertions regarding the arrest of Giovanni Ramirez for the beating of San Francisco Giants fan Bryan Stow certainly had me convinced they had a case: Where do I sign the booking slip? But Ramirez was later revealed to be innocent, at least of the Stow attack.

At the same time, I know that agencies tend to be even more cautious of the prospect of screwing up when it concerns one of their own. And face it, when you’re dealing with an African-American female captain, you’d better be damn sure that you have your ducks in a row, especially since you’ve already had millions of dollars in civil suits awarded against you.

Regardless of the merits of Abram’s case, there are few things more terrifying than the thought of a captain of a patrol station playing both sides of the fence. The question isn’t whether or not your captain had your best interests in mind but how far would he or she go to protect his or her criminal contacts?

That LASD may have a fox in its chicken coop hardly surprises me. It takes all kinds to do the job, and God knows Los Angeles County has a history of hiring and promoting them, a practice that found me working alongside people who turned out to be everything from embezzlers to murderers.

Such sociopathology is the stuff of convoluted plotlines and bad cop movies, only played out in real life. Stories of corruption at all levels of the department have made the rounds for years, with many regarded as open secrets among its personnel.

A curious sensation of schadenfreude has always found me locking onto those associated with certain members of the department’s upper echelon. The following is a quick and by no means complete list:

The female sergeant busted for pot who successfully had her prosecution shit-canned because she had videotapes of various administrative members in her bed.

The various chiefs and commanders responsible for felony DUIs and hit-and-runs.

The back door dealings of helicopter parts and stolen firearms.

The falsification of charges against a detective who went snooping into affairs deemed not to be of his concern (the department paid only about a million on that fiasco, a bargain given the particulars)
I am not one to minimize the implications of the above transgressions, but surely there is nothing worse than working on the front lines of narcotics interdiction and having a captain engaging in the trafficking of narcotics. Does a captain like that have your back? Or does that captain have your back zeroed in?

As a bleeding heart cop advocate, I’ve been taken to task for defending what some deem indefensible. Whether any remorse is warranted on those fronts is debatable. But I do know that I’d feel like a twerp if I failed to acknowledge the elephant in the room: To what extent have the cartels and their ilk gotten their talons into the sides of administrators, not only within LASD, but LAPD and elsewhere?

Maybe that’s a specious speculation. I hope it is. Maybe the culprit is something else—LASD’s promotional policies and practices (often NOT one and the same) and the hazards of quota-based promotions. I guess we in the peanut gallery will just have to wait and see.

At least we’re one up on Lady Justice on that score. But while she may be blind, I just hope that when it comes to Abram’s guilt or innocence and the taped evidence, that Justice isn’t deaf, too.

Direct Link: http://www.policemag.com/Blog/Patrol-Tactics/Story/2011/09/Foxes-in-the-Chicken-Coop.aspx