Computer pranks are nothing new, they get massively distributed in the days leading up to Halloween, with the aim of scaring users, says IT vendor Panda Security.
The security company says these applications are actually harmless, as they really do not contain any malware or Trojans.
However, it says, as Halloween approaches applications, fake Web sites, spam and Trojans all put on disguises to try to trick users. “We have been detecting attacks like these since August,” it adds.
Panda says these bugs usually arrive at the targeted computer from one of the victim's contacts, as a Halloween video file or an online greetings card, via e-mail or a social network.
“However, once the user has downloaded and installed the item, it displays a series of messages and screens informing the user that they have been infected by a Trojan,” the company says.
On other occasions, a flash movie may simulate the deletion of all contents on the computer's hard disk, while a spooky skull is displayed on the screen, it says.
“The Web site that distributes this prank offers a video with instructions to configure the movie in order to make it even more realistic and frightening.”
In reality, these are just computer virus hoaxes. However, there is no doubt that users will be really scared to see their computer almost destroyed, it adds.
On other occasions, attackers are using latest releases like 'Paranormal Activity 2' or Halloween classics like 'Friday the 13th' to distribute malware, the company warns.
“Hackers are using these well-known Hollywood productions to launch Blackhat SEO attacks, exploiting popular topics in order to place malicious Web sites at the top of search results when users look for certain terms in search engines.”
Panda says if a user accesses the malicious Web site, a Trojan or fake anti-virus is downloaded onto their computer. “These attacks not only exploit horror movies, but any other Halloween-related items like party invitations.”
Protection better than cure
As always, having a great anti-virus and taking some basic precautionary measures are the best ways to stay protected against both real and/or fake threats, the security vendor says.
The company warns computer users not to open e-mails or messages received on social networks from unknown senders. “Do not click any links included in e-mail messages, even though they may come from reliable sources. It is better to type the URL directly in the browser. This rule applies to messages received through any mail client, as well as those in Facebook, Twitter, or other social networks or messaging applications.”
It says if a user does click on any such links, take a close look at the page you arrive at. “If you don't recognise it, close your browser.”
Panda also advises people not run attached files that come from unknown sources. In particular, watch out for any files with Halloween-related names. “Only buy online from sites that have a solid reputation and offer secure transactions, encrypting all information that is entered in the page. To check that the page is secure, look for the security certificate in the form of a small yellow padlock next to the toolbar or in the bottom right-hand corner of the screen,” it says.
Do not use shared or public computers for making transactions or operations that require you to enter passwords or other personal details, Panda says. “Have an effective security solution installed, capable of detecting both known and new malware strains.”
Panda says it also saw an increase in the massive distribution of Halloween-themed spam used to trick users into giving away their personal data and buying fraudulent or illegal products, or just make money as many of these companies get revenue through pay-per-click systems.
Share