Skip to main content

Beware of fake Adobe Flash updates

Bee careful when your browser asked you to update your Adobe Flash player. According to Barracuda Labs -"some sites offers visitors to update Adobe flash with an official-looking Adobe Flash update page. Even though this page looks convincing, downloading this ‘update’ only provides the user with a nasty piece of malware that McAfee currently classifies as Downloader-CEW.f."
And it is recommended that one can update their Flash player at http://get.adobe.com/flashplayer. only
And here is an example from Barracuda Labs " How it happens" -

Performing a quick search for a breaking news topic, such as LeBron James opening his own Twitter account, starts the process. Searching for “LeBron James Twitter” gives the highlighted result a rank of 62.
Google Results for LeBron James TwitterGoogle Results for trend topic "LeBron James Twitter"
Clicking on the highlighted result  sends the user directly to the fake upgrade page. Note that the actual domain is registered in the Cocos Islands.  Also note that the dialog offers Adobe Flash Player 11, while (at this writing) the current version of Flash is 10.1.
Fake Adobe Flash Update DialogFake Adobe Flash Update Dialog
Another sign that this dialog box is bad news is that none of the buttons close the dialog.  Clicking both”Cancel” and “Details” implores the user to click “Ok”  (which is not a button name).   Only “Continue” offers the user a path forward, to a Windows Security Warning dialog.

If the user does run the file, it will download a background clicker that uses the Internet connection to generate fake Internet traffic.  While this activity goes on unseen, additional scamware and spyware programs are downloaded, as seen below.
PC infected with malware
The unsuspecting user can be compromised in no time, which is why it is recommended to get Adobe Flash updates directly from the source.
Barracuda Web Filter and Barracuda Purewire Web Security Service customers are protected from these attacks.

Source: Barracuda Labs - Blog

Popular posts from this blog

Google Correlate: To research the behavior of the real-world

Robotic insects first controlled flight

Researchers from Harvard School of Engineering and Applied Sciences shown the first controlled flight of Robotic insects. They are half the size of a paper clip, weighing less than a tenth of a gram, the robot was inspired by the biology of a fly, with submillimeter-scale anatomy and two wafer-thin wings that flap almost invisibly  120 times per second.

Julicloud- A web based OS

Julicloud is a Web application provides portable desktop, that means you can access your files, Web apps on all devices. The main thing in this app is it can work on any old computer or devices which supports HTML, CSS and JavaScript and turns them into a powerful new cloud computer. With Jolicloud, you can launch and organize your favorite Web apps. There are more than 1000 web apps connected to Jolicloud desktop. You can try it @  https://chrome.google.com/webstore/detail/nfakdllpdfjjbfommlcnfkedmbigkfdo Or you can learn more at:  http://www.jolicloud.com/ .