September 19, 2013 2:20
The FBI is aware of a new type of malware known as Beta Bot. Cyber criminals use Beta Bot to target financial institutions, e-commerce sites, online payment platforms, and social networking sites to steal sensitive data such as log-in credentials and financial information. Beta Bot blocks computer users’ access to security websites and disables anti-virus programs, leaving computers vulnerable to compromise.
Beta Bot infection vectors include an illegitimate but official looking Microsoft Windows message box named “User Account Control” that requests a user’s permission to allow the “Windows Command Processor” to modify the user’s computer settings. If the user complies with the request, the hackers are able to exfiltrate data from the computer. Beta Bot is also spread via USB thumb drives or online via Skype, where it redirects the user to compromised websites.
Although Beta Box masquerades as the “User Account Control” message box, it is also able to perform modifications to a user’s computer. If the above pop-up message or a similar prompt appears on your computer and you did not request it or are not making modifications to your system’s configuration, do not authorize “Windows Command Processor” to make any changes.
Remediation strategies for Beta Bot infection include running a full system scan with up-to-date anti-virus software on the infected computer. If Beta Bot blocks access to security sites, download the latest anti-virus updates or a whole new anti-virus program onto an uninfected computer, save it to a USB drive and load and run it on the infected computer. It is advisable to subsequently re-format the USB drive to remove any traces of the malware.
September 16, 2013 2:50
On Wednesday, September 11, 2013, Bank of Ann Arbor’s Online Banking and Execubanc will be enhanced to provide more thorough authentication during the log in process.
This change may cause you to receive more frequent security challenge questions, even if you have selected “this is a trusted computer, remember me.” This is because computer hardware is frequently changing, and now something as simple as plugging in a USB thumb drive can change the hardware “signature” of the computer, prompting a new security challenge question.
While you may find this frustrating or experience more frequent lockouts, the threat of account hacking and identity theft require us to stay on alert to keep our systems as secure as possible. Please call our e-banking team at 734-761-9048 or email@example.com if you have any questions or continued difficulty using our online banking services.
September 10, 2013 3:20
This one is crafty. There is a fake CNN spam being sent with a subject that reads: "The United States began bombing!" in Syria, but clicking on it will likely result in the workstation being infected with malware.
The spam message is allegedly from the real CNN journalist Casey Wian, and some of the emails even have a picture with black smoke over a street scene. The email has a two-sentence lead, and then there is a link for a "Full Story" that triggers a Trojan downloader and other malware, as per Kaspersky Labs. The bad guys are trying to exploit older versions of Adobe Reader and Java.
Please be aware so that you do not fall for a classic social engineering trick like this. If the U.S. actually does start a police action in Syria, there will be many more of these phishing attacks.