Geek News: Latest Technology, Product Reviews, Gadgets and Tech Podcast News for Geeks

Attention: Malware On Your Computer?

Posted by fogview at 11:55 PM on December 20, 2009

“Security center has detected malware on your computer.” Have you ever seen that message pop up on your computer? Have you ever seen it happen over Skype? Well, I’ve received that message three times in the last month as a Skype message. It tells me that my Windows software is infected and I need to install a patch. It even gave me a website (link) to go to to help me install the patch.

Skype Malware Message

I may have fallen for the trick but I don’t know how a Windows patch would fix my iMac running OSX. I don’t run Bootcamp, or Windows in a virtual machine, nor does my iMac know what an .EXE or ActiveX file is. I’m sure if I clicked on this link and installed the patch on my Windows machine, my machine WOULD have been infected with malware! (For now Mac machines may be safer from malware infections but it’s wise to still be careful.)

I’ve written before about being safe on the Internet and not going to sites you don’t know or clicking on links in emails, but this is the first I heard of a message over Skype. If you look at the message box (on my iMac), it doesn’t even say it’s from Skype and the window title says. “Software Updates.”

What concerns me is that many people may fall for this trick. I know most readers of GNC and listener’s to Todd’s podcast are tech savvy enough that they wouldn’t fall for something like this, but what about mom (or dad) or your grand parents who get a web cam for Christmas and install Skype so they can talk to the grand kids? Would they click on this link and install the “patch” if this message box appeared?

Google is trying to find sites that install spyware and root-kit software on your computer, but you can’t depend on this for every “bad” website. Recently there was a SQL-injection virus that infected a large number of websites. The virus takes advantage of PCs running Windows that have not been patched with the latest updates. You don’t have to click on any links to get infected — just visit a site taken over by this malware software. It does this by linking to the site 318x dot com (please don’t go to this site). If you search for 318x dot com using google, the first search listing says “This site may harm your computer.” That because this site has been around for a while and has given enough time for Google’s security bots to find the site and determine that it’s up to no good. Here is the link for the Google Safe Browsing page for the 318X site: http://google.com/safebrowsing/diagnostic?site=318x.com/

Now back to my Skype message. I mentioned that this is the third time I’ve received this message in the past month. Each time I did a Whois search of the linked website and found that the website was created within one day of when I received the message. The website mentioned in the most recent warning message was created the same day I received the message. This tells me that the author of this warning message is changing the website URL to keep it from being flagged by Google and the security monitoring sites. If you do a Google search for this site it comes up clean. Oh, did I mention that the owner of this site (and the previous two sites) is from Prague, Czech Republic (outside US laws)?

As you visit relatives and friends over the holidays make sure everyone knows about safe surfing on the Internet. Don’t click on links in emails (or Skype message boxes) and make sure to keep your computer’s OS patched and up to date.

Happy Holidays.

73′s, Tom

8 Comments

  1. From Attention: Malware On Your Computer? – Geek News Central at 1:11 am on December 21, 2009

    [...] here: Attention: Malware On Your Computer? – Geek News Central Tags: center-has,  detected-malware,  happen-over,  malware-on-your,  [...]

  2. From Peter Parkes (Skype Blogger) at 7:05 am on December 21, 2009

    Please also block and report these users to us. You can do this by right-clicking their name in the contact list and choosing ‘Block’) – this’ll help us deal with them appropriately.

    You might also find it useful to adjust your privacy settings so that you don’t receive messages from people who aren’t on your contact list. You can do this from Skype > Preferences > Privacy on a Mac, or in Tools > Options > Privacy on Windows.

  3. From Philip from Australia at 2:47 pm on December 21, 2009

    I got one of those shortly after switching to the Mac. I recall I blocked the user and emailed Skype (the option to report as spam did not then exist).

    I was amused that it said I WAS at risk, when I was in Mac OS X. And that’s not even on the list.

    As I recall it had a .mi1 address. To look like a .mil, I guess.

    NOW I’m getting cigarette offers.

  4. From fogview at 3:18 pm on December 21, 2009

    Peter, I did block the Skype user who sent me the message but they keep changing their Skype handle as well as their website URL.

    I wasn’t trying to pick on Skype in my blog post but showing how you have to be very careful dealing with these type of messages no matter where they come from.

    Tom

  5. From CitizenX at 9:51 pm on December 21, 2009

    Funny. On Dec 17th I was hit with this.
    Geek in me started up the camtasia to document it.
    It never occurred to me to BLOCK this person, sorry.
    But you can see the user name in the video
    http://www.youtube.com/watch?v=dG0SlXPEvMA

  6. From CitizenX at 9:52 pm on December 21, 2009

    Nope.. looking at it again the user name is masked.
    Just wanted me to add the contact.

  7. From standart membran bayi at 8:41 am on December 22, 2009

    a good text. thansk for article and share.

  8. From Carol at 7:12 am on December 23, 2009

    Hi that is a very fascinating view, It does give one food for thought, I am very delighted I stumbled on your blog, i was using Stumbleupon at the time, anyway i don