Buying an iPhone online could cost people a lot more than the price of the phone. If their computers are one of the 7,500 zombies on a botnet infected by the Aifone.A bot Trojan, it could cost their bank card balance and bank savings, too.
PandaLabs has uncovered a tool that is used by cyber-criminals that controls the botnet. If users of an infected PC try to buy an iPhone online, they will be taken to a false page that appears to be the iPhone official page. If the users try to buy the phone from the spoof page, they will actually be giving their bank details to cyber-criminals.
Cyber-crooks can also use the tool to display pop-ups and banners with advertising about iPhone aimed at enticing infected users to visit the spoofed web page.
"This is one of the most sophisticated attacks we have seen targeting a user community, in this case iPhone users. It is a really complex, dangerous attack that combines elements of malware (the Trojan), phishing (the spoofed web page) and even adware (pop-ups, modification of search results, etc.)," said Luis Corrons, Technical Director of PandaLabs.
PandaLabs
Since 1990, its mission has been to analyze new threats as rapidly as possible to keep our clients safe. Several teams, each specialized in a specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc.), work 24/7 to provide global coverage. To achieve this, they also have the support of TruPrevent Technologies, which act as a global early-warning system made up of strategically distributed sensors to neutralize new threats and send them to PandaLabs for in-depth analysis.
Source: PandaLabs
Digg
Reddit
Slashdot