Be Warned of Stealthy Click Fraud Malware In Vogue

September 27, 2013 | By Editor 

Fraud Malware In Vogue

A group of hackers who were behind the massive botnet issue in Tor network is now being suspected to be the developers of stealthy click fraud scam that is mining data from various sources. Microsoft has made this report official claiming that despite SSL Certificates protecting websites and multiple security measures in place, the click fraud activity was spotted and it convinced multiple users to click on the links provided that led to data crashes.

Even though, officially it is not known with regards to the damage caused by this malware, the security experts are confused on this one resurfacing after a two gear gap. Earlier, the same bot was a popular issue in 2011 and Microsoft Malware Protection Center blacklisted the same so that it doesn’t bother users using Windows operating systems. The center was the same organization that identified the reentry of this supposedly malware which is linked to Sefnit malware and comes from the family of botnets that steal data based on clicks.

From an anti-fraud perspective, such clicks are almost impossible to detect says security center researcher McDonald. The only thing that led to the discovery of this issue is that when users clicked on a link, they were redirected to some other website and the original site was completely hidden in the results. This created suspicion and similar sites which are even secured with SSL Certificates were actually redirected to something new based on which the users reported it to the research center.

Security experts who are always looking out to detect and stop malware intrusion found instances of this issue so as to block it at the earliest. It is an unwanted attention which the group never planned to meet in the first place. When they were detected and reported, the group decided to close their shop and may most probably come with a new malware.

The considered malware threat even targeted SSL Certificates issued websites and a huge brand like groupon. The fake click promised a Google ad coupon which can be used to get adwords discount for continuous promotion. By using a proxy service, the click redirects people from Groupon onto some other unidentified website and it also defames the Groupon company in the process. Sefnit Trojan is also found in different legitimate installation of File scout applications. Experts are working to identify this and also warn users at the same time, on ways to detect a click fraud and avoid it at all costs.

ssl certificate

Posted in Technology

Be Sociable, Share!

Leave a Comment


* fields are mandatory