Kaspersky Lab reports fake web form to Google

VARINDIA- INDIA'S FRONTLINE IT MAGAZINE

Having only launched at the end of June, Google Plus is growing fast, having already reached more than 10 million users in its first week of operation and has attracted the attention of cybercriminals. In fact, Kaspersky Lab has identified that cybercriminals are already targeting individuals through friend invites to this network, via emails.

Fabio Assolini, Malware Researcher, Global Research and Analysis Team, Kaspersky Lab, said, "Google Plus is another addition to the social networking world, and while certainly an exciting avenue to explore in this regard, considering the world of Internet cybercrime, Kaspersky Lab have identified that Brazilian cybercriminals have already started sending fake invites with malicious links pointing to malware, specifically Trojan bankers. We recently found one targeting Portuguese speakers and as such, feel that it is crucial to warn users of the potential security threats targeting this social networking site as it is only set to grow. If you are interested in joining Google Plus, our advice would be to ensure you explore this medium on a secure computer, whilst being cautious at all times of pop-up blocks and links that insist you re-direct. Furthermore, Kaspersky Lab urge users to not believe in supposed invites received via e-mails. Ensuring a safe social networking experience requires you to be aware that such threats exist, thereby being able to take action the necessary action required and socialising in a secure environment."

The fake invite contains an infected link that when accessed, redirects the user to a very common Brazilian Trojan banker file, a .cmd file hosted at Dropbox. The most interesting thing to note in this message however is another link pointing to a form hosted at Google Docs. The message shows the link as "send the invitation to your friends", but it is actually a fake form created to collect names and e-mail addresses of new victims. Kaspersky Lab has reported this malicious file and the fake Web form to Google for their interest.


For More Details See

www.varindia.com