Pop-ups getting you up?

US Internet users have been showered with porn and Viagra pop-ups in a scam to sell them bogus security software.

According to reports, Ron Cooke, owner of Messenger Solutions, was accused of violating Washington's Computer Spyware Act and Consumer Protection Act when marketing his WinAntiVirus Pro 2007, System Doctor, Messenger Blocker and WinAntiSpyware products, explains Brett Myroff, CEO of regional Sophos distributor, Sophos South Africa.

"It is alleged that Internet users were coerced into purchasing the software after pop-up adverts were sent via the Windows Messenger Net Send system. Consumers who downloaded the software are said to have unwittingly bombarded other computer users every two seconds with pop-up messages advertising pornography and drugs to improve sexual performance," he says.

According to Myroff, scammers have been known to bombard a PC with nuisance pop-up adverts. They then follow them up with further messages that resemble system alerts to try and fool the unwary into downloading a "solution" to fix the problem.

"You don't even have to be browsing the Web to have these nuisance messages appear - just being connected to the Net can be enough," he says.

"Scam software like this gives the real security industry a bad name. Home users and businesses need to have a legitimate solution in place to prevent these kind of underhand practices being used to sell software," warns Myroff.

Sophos notes that this is not the first time Windows Messenger, also known as Net Send, which is normally used by a company's system administrator to send systems messages to users inside the organisation, has been used to send consumers' anonymous messages that simulated security warnings.

"Several criminal gangs are in the business of persuading people to download software by misrepresenting that it is necessary to protect a computer's security or privacy," explains Myroff.

"Internet users need to take great care about which programs they choose to run, and be aware that some 'solutions' may not truly have the best interests of the PC owner in mind."

Also of interest this week were warnings of the rising nuisance of spam sent to mobile phones, as China Mobile issues an apology after nearly half of China's cellphone users were sent unwanted junk text messages this week, says Myroff.

According to the reports, China Mobile blamed management loopholes that allowed seven online advertising firms, reportedly including Nasdaq-listed Focus Media, to send unsolicited SMS messages to over 200 million users.

"This was an SMS spam tidal wave. When the mobile phones of 200 million people in China all bleeped at once to tell them they had a new SMS spam, the authorities had to sit up and listen," Myroff says.

"Misguided companies may be tempted to exploit modern technology in their attempt to get marketing messages in front of their potential audience, but spamming cellphones is simply not acceptable. China would be wise to follow other countries around the world and clarify the rules regarding spam SMS messages."

According to Myroff, a number of low to medium prevalence Trojans also emerged this week. These are affecting Windows users and include Troj/RootKit-CF and Troj/Tibs-UD.

The Troj/Dorf-AZ Trojan, also affecting the Windows operating system, is making the rounds and installs itself in the registry. "It also occurs as W32/Nuwar@MM," he says.

Troj/Drop-N, another Trojan for the Windows platform, drops more malware, while Mal/Motsky-A has also been noted for demonstrating malicious behaviour, Myroff concludes.