Fake Google Talk / AIM Programs, And How To Spot Them

| | Comments (0)
Someone has created a couple of fake applications currently in the wild, both made to look like legitimate chat programs. They're pretty convincing:

fkaim1.jpg

fkaim3.jpg

We've seen these kinds of scams before, and as with those programs, when the victim enters their details they're stored locally on the PC (in this case, storing them in Settings.ini) for the attacker to collect.

Though this means physical access to the PC is required (think net cafe scammers hawking around unsecured PCs), for around 5$ you can buy an upgraded version which sends the stolen data to an FTP server.

Okay, I hear you cry - how do we spot these particular nasties?

Well, it seems vanity has got the better of the creator. They just couldn't resist putting in a "hidden" about page that tells you who made them - presumably for bragging rights on forums.

This works great for us, especially when I do so enjoy randomly clicking around on the surface of rogue programs just in case something amazing pops up.

As luck would have it...

fkaim2.jpg


fkaim4.jpg


Thanks, vain hacker type person. Obviously, this will only work where you're presented with a PC running either of the above, but it's better than nothing...

Leave a comment

About this Entry

This page contains a single entry by Christopher Boyd published on March 27, 2009 7:49 AM.

LiveGrabber And The Art Of Distraction was the previous entry in this blog.

Steamy Phishing is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.