Fake Microsoft “Security Essentials” in the wild.
A very popular tactic by malware and virus writers is to masquerade as security software. Recently something has showed up in the wild that alleges to be Microsoft Security Essentials. This imposter not unlike many similar packages downloads and installs malicious components that undermine security settings on the infected host and prevents access to antivirus websites. The most popular method for packages like this are browser popups or carefully crafted links in Emails.
If you think you may have been infected or received an Email that may link you to this or other Malware, Managed Solutions provides free support via our Facebook page at http://bit.ly/7zaVpx
Microsoft Malware Protection Center
Threat Research & Response Blog
If it calls itself “Security Essentials 2010”, then it’s possibly fake, innit?
Well, it had to happen eventually. One of the oldest tricks used by rogue antivirus products is to use a similar name as, or have a similar look and feel to, legitimate security software. It’s been commonplace for them to mimic the Windows Security Center. So it was inevitable that the day would arrive when a rogue would masquerade as something similar to Microsoft Security Essentials. If anything, it surprises me a little that it’s taken so long.
Microsoft Security Essentials can be downloaded and used without charge by users running genuine Windows (from here: http://www.microsoft.com/security_essentials/).
it lowers a number of security settings in the registry
This LSP monitors the TCP traffic sent by various Web browsers that the user might have installed, and blocks any traffic to certain domains,
Trojan:Win32/Fakeinit description.Read more at blogs.technet.com
Leave a comment