Trojans from windshield fliers

This has been floating around since Feb 3rd, but I really thought it was worth pointing out this story because it shows just how smart some bad guys can be, even if the malware they are using sucks.  The story started at the SANS ISC (Internet Storm Center) (where they did their usual great job of breaking down the process of how the malware does its thing).  The story says that some fairly innovative bad guys put fliers on a bunch of car windshields in North Dakota.  The flier had the following printed on it:

PARKING VIOLATION This vehicle is in violation of standard parking regulations. To view pictures with information about your parking preferences, go to <website-redacted>

You go to the website, and all kinds of crap tried to get loaded on your machine.

As stated before, the malware that they used was pretty "run-of-the-mill" according to Lenny Zeltser (author of the post).  The creative way it was spread is the piece that is news worthy.  This is, once again, proof that the human factor will always be in the mix when it comes to security.  OS's and the software that rides on it can only be so secure.  When you factor in the tactics of social engineering, there is only so much that can be done.

And don't take me wrong.  I am not calling these people stupid that fell for the trick.  You would REALLY need to be paranoid to think something like this is bad.  Yea, the whole thing felt funny to me while I was reading it, and I think I would have balked a bit on going to some website that I wasn't familiar with.  But I am PAID to be paranoid.  Not everyone thinks that way because they don't do what I do for a living.

And before I go, let me point out one thing that bothers me about this.  Seriously, North Dakota?  No offense, but aren't there about five people living up there?  This might have been a bigger deal if they had done it in New York or LA.  But North Dakota?  Maybe they figured the people in major metro areas get more parking tickets and tend to know what the official documents look like.  Who knows.


Copyright © 2009 IDG Communications, Inc.

Shop Tech Products at Amazon