Malware masquerading as legitimate anti-virus software is bad enough. But according to Microsoft, unwitting consumers are being targeted by some new and fairly convincing facsimiles of the company's own anti-virus and security programs.
Microsoft is no stranger to being a model for cyber criminals pushing fake services, explained Jasmine Sesso, Microsoft Malware Protection Center spokesperson.
"For some time now, rogue security programs have been trying their hardest to look just like Microsoft security products," said Sesso. "I suppose they figure that the more they look like us, the more likely unsuspecting users are to hand over their hard earned cash to have their computers 'cleaned' by these imposters."
Unfortunately, it works.
Sesso said a "particularly obnoxious threat" called Defmid has been making the rounds. The trojan was discovered last year and presents itself as a legitimate Microsoft program - complete with the multicolored Windows banner. When installed, it can appear as AntiVirus Pro, Security Defender 2011 or System Defender.
To make matters worse, Sesso said that the recent proliferation of Defmid coincides with a rash of phone calls to users from folks claiming to work for Microsoft customer support. Suffice to say, they really don't.
"Microsoft will never cold-call a user. Ever. If you receive one of these phone calls, hang up," warned Sesso.
Anti-virus mimicry aside, the software giant has seen other aspects of its business aped for cons. Last year, Microsoft Hotmail Group Program Manager Dick Craddock revealed that his personal information and picture were utilized in a convincing phishing scheme that tricked users into turning over their email addresses and passwords.
"We will continue to fight the good fight, and do what we can to prevent the spread of malicious programs," said Sesso, "but in the meantime, stay safe online, and think twice before handing over your credit card details to a third party you cannot verify - like one displaying pop-ups, or on the end of an unsolicited phone call." (via Microsoft Malware Protection Center)
