This tactic is not new, but before it was done using fake "security" scanners, antivirus programs, or malware scanners. Now the authors have turned their attention to rogue defrag programs, as reported by GFI Labs and other web sites. I heard it first on the Security Now podcast #280:
... watch out for fraudulent defraggers.What worries me is that this kind of scareware is likely to give defrag programs a bad name, in the same way that anti-spyware and registry scanners have been given a bad name. So, before you download any defrag software, check whether it is on this list and use the correct URL supplied. If it isn't on the list, report it, and use a trusted program instead.
That's the latest thing to happen. There's so many useful free software out there, it's not surprising that the bad guys are going to be mixing their own malware in with the good stuff.
So there's HDDRepair, HDDRescue, HDDPlus, UltraDefragger, ScanDisk, DefragExpress, and WinHDD have all been identified as bogus. They claim to be a free defragger to make your computer run faster, the way it used to. And who doesn't want that? What these things do, though, they're scareware. You run them; they actually do no defragging at all, but they apparently do something. And then they come back with a note that, oh ... you've got serious problems, baby. We're going to need another $20, or an initial $20, or more in some cases, to fix this problem. So again, this is going to catch a certain number of people who unwittingly download this and don't know any better.
Funny, Windows comes with a defragger. Seems to work OK.
ReplyDelete