Cloud Communications

Cloud Communications Company GFI Releases VIPRE Report for March 2012

By Anshu Shrivastava TMCnet Contributor

GFI Software, a provider of cloud communications solutions, has released its VIPRE Report for March 2012, saying that it’s a collection of the 10 most prevalent threat detections encountered last month.

The company’s top 10 threat detection list has been compiled after going through the collected scan data of GFI VIPRE Antivirus customers. Company officials said that these customers are part of GFI’s ThreatNet automated threat tracking system.

Additionally, GFI Labs, which specializes in the discovery and analysis of dangerous vulnerabilities and malware, also documented several spam attacks and malware-laden email campaigns.

According to the cloud communications company, such a campaign aims to infiltrate users’ systems under the guise of communications from well-known companies and promotions for popular products and services.

“Taking advantage of the notoriety of companies, celebrities and major events is a tactic cyber-criminals continue to use because it works,” said Christopher Boyd, senior threat researcher at GFI Software.

Boyd said that they know that Internet users are bombarded with countless emails every day, and these scammers prey on the curiosity and reflex-like tendency to click on links and open emails that look like they’re coming from a trusted company.

Users see Google (News - Alert), LinkedIn, and Skype as secure brands, but were among the brands exploited by cyber-criminals. GFI found that Google served as the hook for two particularly nasty scams in March.

Company officials said that they uncovered that a SEO poisoning attack informed users that “Google systems” had detected malware on their computer and directed them to download a rogue antivirus program. And, spammers sent emails containing fake announcements for “Google Pharmacy,” a fake service.

The email included an image and there was no text message. Company officials said that this was done to spam filters. And, whoever visited the URL contained in the image spam was directed to Pharmacy Express, a site said to be linked to spam attacks since 2004.

Users of LinkedIn (News - Alert) received fake invitation reminders, which re-directed them to a BlackHole exploit and infected their machines with Cridex, a Trojan that has targeted banks, social networks and CAPTCHA tests.

Additionally, cyber-criminals also targeted Skype (News - Alert) users with a spam campaign claiming to offer free Skype Credit, but instead directed users to a compromised site hosting malicious Java exploits, said company officials.

Moreover, in the month of March, multiple scams and cyber-crime efforts revolved around the launch of Mass Effect 3, one of the most eagerly awaited games of the year.

If something seems off, users should trust their instincts and investigate further, Boyd said, noting that the important thing is for everyone to remember that the Internet provides the ability to easily double check every link or attachment that a user comes across with a simple Web search.

“Pay attention to details such as link URLs, and scrutinize where they are directing you if there is any doubt. This may sound like common sense, but having this mindset can often be the difference between avoiding a stressful attack and losing valuable time, money and personal information,” Boyd said.

GFI Software provides Web and mail security, archiving and fax, networking and security software and hosted IT solutions for small to medium-sized businesses (SMB) via an extensive global partner community.

Last month, the company announced enhancements to its GFI FaxMaker network fax server software, which will greatly reduce the telecommunications costs associated with traditional fax connectivity options.

View More