Skype Virus Alert- Rogue Links Coming from Your EXISTING Contacts
Do you love Skype™ as much as I do? I use Skype on a regular basis to communicate not only with friends, but also clients and important business connections.
But what happens when you realize that one of your business associates, or even a family member sends you a link that infects your computer? That's exactly what is happening. On October 8, 2012 a new virus affecting Skype users was discovered and it's being reported all over the Web, including CNET, and Mashable.
Don't believe for a second that your legitimate contacts are sending those links to you on purpose. It is very likely they they have been infected, and that they have no control whatsoever over their system. In fact, it's possible that their computer is even being held under virtual lock-and-key for monetary ransom.
Read on to learn more about this unsettling Botnet Scam...
Last year:
Beginning on or around March 15, 2011, numerous people reported that they were receiving virus scam calls on Skype from a robotic voice telling them that their computer is infected and to go to a website to buy a Fake Anti-Virus program to fix it.
Now:
Similarly, as of October 8th 2012, people have been allegedly receiving automated messages from what appear to be automated bots (Dorkbot Worm) with the socially-engineered message: " Lol is this your new profile pic?" with a link to what might appear to be a legitimate zipped image to the layman.
This bot is very clever and spreads through a few computers to begin with, and then automatically targeted contacts in the infected user's Skype contact list. As these contacts receive the automated messages, many of them wouldn't think twice about opening the link because they are receiving the message and link from an established (possible credible) contact on their “friend" list.
If one were to click the provided link, they would download a .zip file. Upon extraction, an executable file could infect your computer. To many people, this would be a sign that something is wrong; however if they have extracted the file and their Anti-Virus system hasn't kicked in and blocked the file, or it is a zero-day attack (no cure has been discovered yet), it is likely too late.
This virus is commonly known as "ransomware." It essentially holds the victim's computer hostage until the victim agrees to pay a fee of $200 to access his/her (now locked) filesystem within 48 hours.
Obviously this means that the perpetrator has full access to not only the victim's personal files, but also any saved passwords the victim may have stored in their system. The malware (Worm Virus) has a multi-tasking feature designed to specifically steal usernames and passwords to social networking sites and PayPal accounts.
And to take it even further, this multi-tasking virus turns infected servers into "botnet" servers to perform DOS (denial of service) attacks on targeted websites, and continues to downloading further viruses on the (already infected) computer.
All Skype has said about this infection so far is that users need to keep Skype updated, along with computer system updates that one should be regularly maintaining. They also said not to click on any links that may look suspicious, even coming from your established contacts.
Once a user is infected, the virus will not only hijack the user's system and hold the files for ransom while stealing the user's passwords but will also begin to send similar messages over Skype to all people on the user's contact list in order to keep the virus circulating.
The link being circulated is also socially-engineered to fool users into thinking that it is legitimate. The structure is as follows:
goo.gl/B463c?img=johnsmith - (link not clickable for your protection.)
Looking at the structure of the link, we first see that the URL appears to be a Google shortlink. Then we see some random numbers and letters in an alphanumeric format, which is characteristic of any typical link. The most socially-engineered part of the link is that the final portion appears to be an image (img), and also implies that the image (img) has something to do with the user in question (in this case, John Smith). This can easily fool even the most seasoned user into thinking that the link is legitimate.
Skype Security and Computer Rescue Kit
Are you worried about getting infected? Not 100% sure that your security is in place and ready to kick any hacker zombie attacks? I know some people that have already received this instant message from some of their contacts.
If you're unsure whether your Skype installation, your computer, or your network is secure, don't take any chances.
Want to ramp up your security in general to prevent these things from affecting you?
WPSecurityClub has prepared a kit featuring details on how to keep Skype, your computer, and your network secure. As a bonus, included is a document on emergency computer restoration in case anyone has already been infected. Additionally, a resource sheet will be provided with some key tools referenced in the documents and on the WPSecurityLock website.
Why the MyNAMS Insiders Club is EXACTLY
what you're looking for!
MyNAMS TEAM - You never have to work in isolation again!
The MyNAMS Team goes way beyond the staff and support personnel. We've put together a group of people who make it their mission to ensure your success. With more than 75 instructors and 100s of members, you find people who can answer your questions quickly, partner with you to create products, and build relationships that help you launch your business or take it to the next level.
We've worked diligently to ensure you have the ability to communicate with us, instructors, and peers (at your own experience level) in a safe environment and find the right mentors or coaches just for you. We make the introductions that you want.
Look for the icon at the left in the benefits grid to see the specific team options we offer.
MyNAMS Training - Learn what you need when you need to learn it!
The MyNAMS Training system is focused on thorough step-by-step instruction with that meets you where you are. It makes no sense to teach you advanced strategies and techniques when you don't have a blog or website. And teaching you how to install a blog when you have dozens already is ridiculous. First, we determine where you are in your experience and then we point you to the right level of training that will enhance your business experience from Novice to Advanced.
Yes! We teach marketing, traffic generation, technology, keyword research and much more, but only when you're ready. And if you need help just getting the technical aspects of doing business online, we have more than 1300 tutorial videos in the Library.
Look for the icon at the left in the benefits grid to see the specific training options we offer.
MyNAMS Tools - Content, graphics, audio, checklists - we've got it for you!
The MyNAMS Tool belt comes with just about everything you need to get a business up and running. In fact, you can be selling products from the Niche Mall even if you've never sold anything before and don't have a website. One of the most frustrating parts about doing business online is realizing you have to nickel and dime yourself to bankrupcy before you can actually get a site up. Not with us.
We provide you graphics, article content, images, audio clips, reports, sales funnels, turnkey websites, and even adsense website portals so you can begin immediately to create or improve your business with confidence that you don't have to spend a ton more cash.
Look for the icon at the left in the benefits grid to see the specific tools options we offer.
To find out more about the MyNAMS Insiders Club, click the link below!
Stefan Sandin says
Thanks for the heads up, David
Brownie Connor says
This is great information, David. Was wondering if I may share it with my customers so they too can avoid the trap?
David Perdew says
Absolutely – feel free to pass it on.