Feeds

Cybercrooks exploit interest in Harry Potter ebook site

Muggles mugged

Intelligent flash storage arrays

Malware-slingers are tapping into the buzz around a new Harry Potter site to mount a variety of scams designed to either defraud, infect or otherwise con would-be victims.

Pottermore, currently in beta, has been set up to sell ebooks of the Harry Potter novels, along with additional content such as background details and settings. Fans of the JK Rowling series are not so patiently waiting for the site to become generally available in early October.

In the meantime, this anxiousness makes them more than suitable targets for scammers. Cyber-tricksters are offering to pre-register users as well as buying or selling accounts via eBay, net security firm GFI Software warns. Supposed account are on offer at around $100 a pop.

The official Pottermore blog strongly advises against buying accounts on eBay, or handing over personal information to supposed pre-registration services. The transfer of accounts is prohibited under the terms and conditions of the site. "We have the right to terminate any Pottermore accounts that are sold online," it said.

In addition, scammers are punting supposed account access as a "download" via YouTube. Unsurprisingly, gullible would-be punters are asked to fill in a survey before they are allowed to get their hands of the undoubtedly non-existent goodies. At best these surveys, similar to types that have become endemic on Facebook over recent months, are a waste of time that only serve to enrich the affiliates of unscrupulous marketing firms. At worst victims will sign themselves up for expensive premium rate services of dubious value, such as daily horoscopes. Even if it doesn't come to that, marks will be induced to hand over personal information that's likely to be abused in follow-up scams.

The download itself might easily turn out to be malware, GFI researcher Chris Boyd warns.

Finally, interest in the Pottermore site is getting abused as part of a search engine poisoning scam designed to trick Potter fans into scareware portals that run bogus scans of surfers' PCs in an effort to fool them into buying fake anti-virus software.

A full write-up of these various scams, complete with screenshots, can be found in a blog post by Boyd here. ®

Top 5 reasons to deploy VMware with Tegile

More from The Register

next story
Regin: The super-spyware the security industry has been silent about
NSA fingered as likely source of complex malware family
Why did it take antivirus giants YEARS to drill into super-scary Regin? Symantec responds...
FYI this isn't just going to target Windows, Linux and OS X fans
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Home Office: Fancy flogging us some SECRET SPY GEAR?
If you do, tell NOBODY what it's for or how it works
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
'Regin': The 'New Stuxnet' spook-grade SOFTWARE WEAPON described
'A degree of technical competence rarely seen'
Syrian Electronic Army in news site 'hack' POP-UP MAYHEM
Gigya redirect exploit blamed for pop-rageous ploy
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
prev story

Whitepapers

10 ways wire data helps conquer IT complexity
IT teams can automatically detect problems across the IT environment, spot data theft, select unique pieces of transaction payloads to send to a data source, and more.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
How to determine if cloud backup is right for your servers
Two key factors, technical feasibility and TCO economics, that backup and IT operations managers should consider when assessing cloud backup.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.