madison

Zero Day

Ryan Naraine and Dancho Danchev
Home / News & Blogs / Zero Day

Vishing attack on Skype pushing scareware

By | May 2, 2011, 5:25am PDT

Summary: Multiple users are reporting on an ongoing vishing attack at Skype, attempting to social engineer users into thinking they’re infected with malware.

Multiple users are reporting on an ongoing vishing attack at Skype, attempting to social engineer users into thinking they’re infected with malware.

Here’s how it works - victims typically receive a pre-recorded Skype call telling them they are infected with malware and need to visit a specific site:

Hey guys,I am working from home on my BlueCoat laptop. It has the cloud client on it. I have skype on this machine. I get a skype call from a place I didn’t recognize. I answer the call and it is a recorded message. It says I have a fatal virus that needs to be fixed. That I am on Windows7. (I am not.) The recorded message tells me to go to www.helphs.com. … Can you find anything in our logs about what just happened? Thoughts?

The specific site in question is an online shop pushing rogue AV products and malware cleanup services.

The web sites - helphs.com mentioned in the vishing attack is currently offline.

Have you been a victim of vishing attacks? How did you respond?

Talkback.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Malware, Scareware, Social Engineering, Skype Technologies S.A., Attack, Security, Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Disclosure

Dancho Danchev

More details on Dancho Danchev's current and past professional affiliations, can be found in his LinkedIn profile.

Biography

Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog sharing real-time threats intelligence data with the rest of the community on a daily basis. More details on Dancho Danchev's current and past professional affiliations, can be found in his LinkedIn profile. You can also follow him on Twitter

Talkback Most Recent of 40 Talkback(s)

  • Similar issue
    I received a Skype call from Computer Repair Online that I did not answer. I can only assume that it is a similar attack. I rarely use Skype so I simply wasn't going to answer a call from someone I didn't know and certainly not from someone named Computer Repair Online.
    ZDNet Gravatar
    cowboy7381
    2nd May
  • RE: Vishing attack on Skype pushing scareware
    @cowboy7381 I agree with you cowboy7381, it's the same as e-mail. I never open an e-mail from someone I don't know. The same applies for Skype or any of the other social networks. This will most often lead to trouble for you.
    ZDNet Gravatar
    txmadmansatx
    2nd May
  • RE: Vishing attack on Skype pushing scareware
    @txmadmansa t x Now, there's a great idea, David. Give me a chance to know who cost me thousands of dollars the past few years (if only one %^$#) and I'd be happy to file charges. But no one seems to be moving against the bad guys. Why is that?
    ZDNet Gravatar
    alasiri7
    4th Jul
  • RE: Vishing attack on Skype pushing scareware
    @txmadmansatx I tend to do the same thing. If I don't know you I'm not opening you. End of story!
    barska scopes
    ZDNet Gravatar
    krtinberg
    30th Aug
  • RE: Vishing attack on Skype pushing scareware
    @txmadmansatx It's too bad that ever technology has to battle hackers and different forms of attacks. I've been a Skype user for a long time and miss the good old days before it was bought. I guess the founders and VCs need to make money and the service is still OK, but ....
    shows in Las Vegas
    ZDNet Gravatar
    allisonfelix
    15th Sep
  • RE: Vishing attack on Skype pushing scareware
    @txmadmansatx
    There is some very good insight here that I agree with very much.
    Philadelphia Chiropractor
    ZDNet Gravatar
    epark732
    27th Sep
  • RE: Vishing attack on Skype pushing scareware
    I use a version of skype that plugs directly into a router. When I got a call, it mentioned the Windows OS, so I knew that it was garbage or spam. I was also not able to block the call for some reason. I wish someone would just create a website here and list the address of the spammers. I'm certain that things would happen if people knew who and where to go visit....
    yabanci dizi izle
    ZDNet Gravatar
    halilturker
    24th Aug
  • RE: Vishing attack on Skype pushing scareware
    @cowboy7381
    While we can choose not to answer the call from a stranger, we wish there is some sort of "spam filter" in skype as for the email. Dog Food
    ZDNet Gravatar
    walterJR
    30th Aug
  • RE: Vishing attack on Skype pushing scareware
    @walterJR
    skype getting so much improvement right now, hope they will still doing this since the world is moving very fast right now
    Cheap travertine tiles
    ZDNet Gravatar
    travertine tiles
    31st Oct
  • RE: Vishing attack on Skype pushing scareware
    Downloading, thank you. replica watches
    ZDNet Gravatar
    lovedong
    13th Sep
  • RE: Vishing attack on Skype pushing scareware
    @cowboy7381 yer I have received similar calls as well it was some credit card , I decided not to pick up also Dr Steven J White Reviews
    Dr Sharon Packer Reviews
    Dr Sydney Coleman Reviews
    ZDNet Gravatar
    ripslyme00
    16th Sep
  • RE: Vishing attack on Skype pushing scareware
    That was a very interesting read. I look forward to checking back in the future to see if any relevant content has been added, thank you for making this available to us. Oklahoma City chiropractor
    ZDNet Gravatar
    epark732
    19th Sep
  • RE: Vishing attack on Skype pushing scareware
    It is definately a scam! I made the experience myself. better ignore those calls. won't bring you anything anyways. to be honest I think it is a shame that so many people still open all kind of emails and answer calls that have scam written all over it! pc kaufen
    ZDNet Gravatar
    rickpatricko
    24th Sep
  • RE: Vishing attack on Skype pushing scareware
    @cowboy7381
    This was a really interesting and entertaining read. This is why I love this site. Thanks!
    Dallas chiropractor
    ZDNet Gravatar
    epark732
    3rd Oct
  • RE: Vishing attack on Skype pushing scareware
    I use a version of skype that plugs directly into a router. When I got a call, it mentioned the Windows OS, so I knew that it was garbage or spam. I was also not able to block the call for some reason. I wish someone would just create a website here and list the address of the spammers. I'm certain that things would happen if people knew who and where to go visit....
    ZDNet Gravatar
    david@...
    2nd May
View More Comments

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
Click Here

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources