As users become more savvy and are able to easily detect phishing attempts, the attackers are getting more clever in their methods.
Symantec has put out a warning for a new virus named Trojan.Kardphisher. The maleware is installed by an infected email, or webpage. Once the software is installed you are prompted by this screen on the next reboot:
If you select “No, I will do it later” the system will immediately reboot – A perfect way to distract the user with a sense of urgency. When they say yes, and move to the next screen they are asked for their credit card details:
It scares me to think of the number of people I know that would be fooled by these forms. I probably would too…except the credit card info page is a dead giveaway. I know MS would never ask for that.
This is just another reason to make sure your systems are fully patched, and have the latest antivirus software.