As users become more savvy and are able to easily detect phishing attempts, the attackers are getting more clever in their methods.
Symantec has put out a warning for a new virus named Trojan.Kardphisher. The maleware is installed by an infected email, or webpage. Once the software is installed you are prompted by this screen on the next reboot:
If you select “No, I will do it later” the system will immediately reboot – A perfect way to distract the user with a sense of urgency. When they say yes, and move to the next screen they are asked for their credit card details:
It scares me to think of the number of people I know that would be fooled by these forms. I probably would too…except the credit card info page is a dead giveaway. I know MS would never ask for that.
This is just another reason to make sure your systems are fully patched, and have the latest antivirus software.
One more thing…Subscribe to my newsletter and get 11 free network administrator tools, plus a 30 page user guide so you can get the most out of them. Click Here to get your free tools