madison
Home / News & Blogs

Malware distributed by fake parking tickets

Tom Espiner ZDNet.co.uk | February 4, 2009 12:20 PM PST

Summary

The SANS Institute reports that residents of Grand Forks, North Dakota had their computers infected after visiting a Web address that was listed on phony parking tickets.

Topics

North Dakota, Browser Helper Object, SANS Institute, Cyberthreats, Viruses And Worms, malware, tickets, security, Spyware, Adware & Malware, Tom Espiner ZDNet.co.uk
A malware infection was propagated through flyers put on windshields in Grand Forks, North Dakota, reports SANS institute.

The flyers were fake parking violation notices, and instructed people to visit a website (which SANS did not publicize). Once they visited the website, they were infected with a malicious browser helper object.

From the post:

"The initial program installed itself as a browser helper object (BHO) for Internet Exploter that downloaded a component from childhe.com and attempted to trick the victim into installing a fake anti-virus scanner from bestantispyware securityscan.com and protectionsoft warecheck.com."

Interesting - I've never heard of windshields as an attack vector.

This blog, Infection began with a windscreen flyer, was originally posted on ZDNet.co.uk.

Talkback Most Recent of 19 Talkback(s)

  • One question...
    Does this only affect Windows windshields, or are Macintosh windshield still safe?
    ZDNet Gravatar
    Metronome49
    4th Feb 2009
  • My car has a Linux windshield
    It is safe from malware, but it has to be washed by hand. On the other hand, it comes in three different shapes...
    ZDNet Gravatar
    barence773
    4th Feb 2009
  • Well it seems that linux is not that safe anymore either
    Assuming you're safe from viruses and other malware just because you are on a non-Windows platform is a big mistake, as the number of Linux-based malware doubled in 2005, and Mac OS X is next to get hit, according to a report from Kaspersky Labs.

    In a report titled "2005: *nix Malware Evolution," the Russian antivirus software developer pointed out that the number of Linux-based malicious programs -- viruses, Trojans, back-doors, exploits, and whatnot -- doubled from 422 to 863.



    http://www.internetnews.com/dev-news/article.php/3601946
    ZDNet Gravatar
    rparker009
    5th Feb 2009
  • One in every crowd
    You're the wet blanket Frank Gifford to the Al Michaels and Dan Dierdorf jocularity here, aren't you.
    ZDNet Gravatar
    ejhonda
    6th Feb 2009
  • RE: Malware distributed by fake parking tickets
    Good example of devious but resourceful social engineering.
    ZDNet Gravatar
    dreampod
    4th Feb 2009
  • this just in...
    "Malware distributed via Morse Code over Short Wave Radio. Fortunately it only affected three 100-year-old men, who didn't know how to use a computer or what a website was anyways."


    Just kidding, but that would be funny wouldn't it?
    ZDNet Gravatar
    Larsix
    4th Feb 2009
  • RE: Malware distributed by fake parking tickets
    LOL... Using Windshields to attack Windows! Classic!
    Not that any Malware is funny no matter how it gets there...
    ZDNet Gravatar
    crash89
    4th Feb 2009
  • RE: Malware distributed by fake parking tickets
    Who in the world would do something like this? And notice to the people out there: a parking ticket has a PHONE NUMBER OR ADDRESS you have to call or go to, respectively..... you shouldn't EVER have to go online to do anything in regards to these, at least as far as I have heard from people who WRITE the tickets.
    ZDNet Gravatar
    Lerianis
    4th Feb 2009
  • Online payment of parking tickets
    "you shouldn't EVER have to go online to do anything in regards to these, "
    .
    ???? I've been going online to pay my parking tickets (well, mostly my son's - grrr) for years now.
    ZDNet Gravatar
    dfreeman@...
    5th Feb 2009
  • Not true anymore
    In some cities in CA you have the option to pay the ticket online. And they put a website on the ticket as well as an physical address and a phone #.

    But going to a website that tells me to download software would definitely throw a red flag.
    ZDNet Gravatar
    tikigawd
    5th Feb 2009
  • It's a BHO so Windows Only
    And even IE/Windows only at that. BHO's are more of MS's "Features" that are nothing short of lunacy.
    ZDNet Gravatar
    itguy08
    5th Feb 2009
  • Ha
    Nice, it's the web version of leaving a floppies labeled 'salaries.xls' (but
    really full of malware) at banks around the city
    ZDNet Gravatar
    Gritztastic
    5th Feb 2009
  • RE: Malware distributed by fake parking tickets
    I guess the automobile manufactures could be held liable for making defective firewalls.
    ZDNet Gravatar
    dfreeman@...
    5th Feb 2009
  • Lmao
    That's the first intelligent and actually funny post i've seen on this blog...good one!
    ZDNet Gravatar
    tybren1@...
    5th Feb 2009
  • Firewalls...
    Now that's funny.
    ZDNet Gravatar
    Joker_TX
    5th Feb 2009
View More Comments

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity