Trojan.Kardphisher – Maleware that looks like Windows Product Activation

Posted by Steve Wiseman on June 18, 2007

0 Comments

Trojan.Kardphisher – Maleware that looks like Windows Product Activation

As users become more savvy and are able to easily detect phishing attempts, the attackers are getting more clever in their methods.

Symantec has put out a warning for a new virus named Trojan.Kardphisher. The maleware is installed by an infected email, or webpage. Once the software is installed you are prompted by this screen on the next reboot:

Fake Product Activation

If you select “No, I will do it later” the system will immediately reboot – A perfect way to distract the user with a sense of urgency. When they say yes, and move to the next screen they are asked for their credit card details:

Fake product Activation

It scares me to think of the number of people I know that would be fooled by these forms. I probably would too…except the credit card info page is a dead giveaway. I know MS would never ask for that.

This is just another reason to make sure your systems are fully patched, and have the latest antivirus software.

Check out our Windows Admin Tools
Filed Under: Windows

Leave a Reply

Remote Control 4
A fast, easy remote control solution for windows
$179 Per Administrator
Click for more info

Please wait while we add your email address to our list

Join our Tips and Software Email List

Get free software, news, and tips
once a week by joining our email list
Enter your email address below

Just like you, we hate spam.

We promise to never sell, or spam your inbox

Thanks for joining our list, and have a great day!

Error adding address

There was an error adding your email address.
It might be because you are already on our list.
If this is not the case, please try again later. Thanks!