Feeds

Banking Trojan hides in fake Alonso F1 crash story

Crash test dummies

Remote control for virtualized desktops

Fabricated news of a supposed car accident involving Formula One star Fernando Alonso is being used to distribute a new banking Trojan.

The fake news story, supposedly from Spanish daily El Pais, has two-time motor racing champion seriously injured on Tuesday in an accident in the norther city of Bilbao. The bogus story, distributed via spam emails, links to a video clip depicting what appears to be a spectacular blaze. The clip installs malware onto the PC of those falling for the ruse.

Fake Alonso crash scam lure

The malware is identified by Spanish anti-virus firm Panda Security as Banker-LGC. "This is not the first time we have seen this piece of news used to spread malware though, as a few weeks ago we saw a very similar one, the major difference was that it was trying to install a Gaobot worm instead," notes Luis Corrons, technical director of PandaLabs.

Virus writers, who often latch onto real news events, also resort to making up fake news. At the start of the month one such attack claimed that the Third World War had begun in an attempt to spread another Trojan.

Planting key-stroke logging software onto compromised PCs sits alongside the use of phishing attacks as a means for hackers to gain access to online banking accounts. Traditionally phishing emails attempted to dupe prospective marks into visiting a website under the control of hackers and hand over account credentials.

Security defenders are getting better at identifying and shutting down (or at least blocking) URLs advertised in these messages, forcing fraudsters to switch tactics. A new run of scam emails, intercepted by security firm Trend Micro, attempts to trick users into emailing their login credentials to fraudsters posing as ISP system administrators. Variants of the attack targeting online banking login details can be expected to follow. ®

Intelligent flash storage arrays

More from The Register

next story
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
Oi, Europe! Tell US feds to GTFO of our servers, say Microsoft and pals
By writing a really angry letter about how it's harming our cloud business, ta
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.