This scam has been reported in a variety of states, and not unlike other ingenious scam operations, will eventually become widespread throughout the United States. Having knowledge of these types of scams, will give you the power needed to avoid falling victim to them.
The text of the tickets read;
"PARKING VIOLATION This vehicle is in violation of standard parking regulations"
According to SecurityProPortal.com ticket recipients are directed to visit a website in order to "view pictures with information about your parking preferences" and install a toolbar.
Once online, the victims are told to download a "picture search toolbar" to view evidence of their car's infraction. It turns out that the so-called "toolbar" installation was a ruse to get the ticket recipients to download a Trojan Horse which installed malware, including a message informing of purported security flaws and suggesting the download of bogus anti-virus software.
Both the file and the security download had been flagged by McAfee anti-virus software. But this type of ploy is momentous for reasons beyond the immediate threat to online security: it used real-world documents in order to conduct cyber-theft.
"Attackers continue to come up with creative ways of tricking potential victims into installing malicious software," SANS Internet Storm Center researcher Lenny Zelster, who blew open the scheme, was quoted as saying by The Christian Science Monitor. "Merging physical and virtual worlds via objects that point to website is one way to do this. I imagine we'll be seeing such approaches more often".
Sources: Finding Dulcinia, Christian Science Monitor
Leave a comment