Debunking email hoaxes and exposing Internet scams since 2003!


Hoax-Slayer Logo Hoax-Slayer Logo

DividerDivider
Home    About    New Articles    RSS Feed    Subscriptions    Contact
DividerDivider
Bookmark and Share





Issue 86 - October 2008 - Page 15

Pages in this month's issue:
  1. Burundanga Business Card Drug Warning
  2. In-N-Out Burger Discounted Food Hoax
  3. Fraud Transactions Warning Malware Email
  4. Human Parts Factory Hoax
  5. Free Fuel Offer From Shell Hoax
  6. Virus Complaint Email Carries Malware
  7. Miley Cyrus Death Hoax
  8. Chinese Milk Contamination - Recalled Products Warning Email
  9. Poverty Reduction And Eradication Advance Fee Scam
  10. ATM Card Advance Fee Scam
  11. Internet Rumour - UNESCO Chooses Indian National Anthem as Best In The World
  12. American Airlines Loyalty Program Phishing Scam
  13. Senator Collins Oil Spill Interview - The Front Fell Off
  14. Online Quiz to Help Bihar Flood Victims
  15. Internet Access Suspended Malware Email

Issue 86 Start Menu

Previous Article

Internet Access Suspended Malware Email

Summary:
Email claims that the recipient's Internet access is going to be suspended because the 'Internet Service Provider Consorcium' has logged illegal activities from his or her computer (Full commentary below).



Status:
False

Example:(Submitted, September 2008)
Subject: Your internet access is going to get suspended

Your internet access is going to get suspended

The Internet Service Provider Consorcium was made to protect the rights of software authors, artists. We conduct regular wiretapping on our networks, to monitor criminal acts.

We are aware of your illegal activities on the internet wich were originating from

You can check the report of your activities in the past 6 month that we have attached. We strongly advise you to stop your activities regarding the illegal downloading of copyrighted material of your internet access will be suspended.

Sincerely
ICS Monitoring Team




Commentary:
This email "warning" is one in a series of messages that attempt to fool Internet users into installing malware on their computers. In this version, the message claims that the recipient's Internet access will be suspended if he or she does not stop "the illegal downloading of copyrighted material". The message, ostensibly from an entity named the "Internet Service Provider Consorcium", urges the recipient to open an attachment that supposedly contains a report of the recipient's illegal activities over the last 6 months.

However, there is no such body as the "Internet Service Provider Consorcium", nor is there any such blanket ISP organization that has the power and authority to systematically "wiretap" member networks and take action against individual Internet users. In the early years of the Internet, there was an organization named the "Internet Service Provider Consortium (ISPC)" - which is presumably what this spelling and grammar challenged scammer intended to say - but it ceased to operate years ago and never had the sort of wide-sweeping powers suggested in the message.

Opening the .zip file attachment that comes with the email will install malware on the user's computer that may steal information, communicate with remote servers and download other malware components.

Internet criminals commonly use such ruses as a means of panicking users into inadvertently installing malicious software. In 2005, malicious emails were distributed that claimed that the FBI or the CIA had logged recipients visiting illegal websites. The messages urged recipients to open an attached file for details. The attachment contained a variant of the Sober worm. Then, in 2006, a bogus Mail Server Report that claimed that emails containing worms had been sent from the recipient's computer itself contained a worm hidden in an attached file. And in 2007, a "complaint" email that falsely claimed to be from the Federal Trade Commission attempted to fool recipients into installing an information-stealing trojan hidden in an attached file.

Another version currently being distributed poses as a threatening "complaint" email accusing the recipient of sending emails containing viruses and instructs him or her to open an attachment supposedly containing email log files. Like the "Internet Service Provider Consorcium" variant discussed here, the emails carry .zip file attachments containing malware.

Internet users should always be very cautious of opening attachments that arrive with unsolicited emails. Do not be panicked by threatening complaints or false accusations into opening attachments without due care and attention.

References:
FBI Virus Emails - Sober Worm
Fake Mail Server Report Message Carries Worm
Federal Trade Commission Complaint Scam
Virus Complaint Email Carries Malware

Previous Article

Issue 86 Start Menu

Pages in this month's issue:
  1. Burundanga Business Card Drug Warning
  2. In-N-Out Burger Discounted Food Hoax
  3. Fraud Transactions Warning Malware Email
  4. Human Parts Factory Hoax
  5. Free Fuel Offer From Shell Hoax
  6. Virus Complaint Email Carries Malware
  7. Miley Cyrus Death Hoax
  8. Chinese Milk Contamination - Recalled Products Warning Email
  9. Poverty Reduction And Eradication Advance Fee Scam
  10. ATM Card Advance Fee Scam
  11. Internet Rumour - UNESCO Chooses Indian National Anthem as Best In The World
  12. American Airlines Loyalty Program Phishing Scam
  13. Senator Collins Oil Spill Interview - The Front Fell Off
  14. Online Quiz to Help Bihar Flood Victims
  15. Internet Access Suspended Malware Email