Some brilliant jerk found an entirely new way to spread malware: he distributed fake parking tickets that prompted victims to visit a malicious website. [ZDNet]


Edit Your Comment

  1. Canino says:

    Brilliant jerk – I like the sound of that. I just need to change one thing…

  2. Eldritch says:

    That’s…. genius. And evil. But genius.

    And evil.

  3. Yankees368 says:

    that is just evil…pure and simple, evil.

  4. Meathamper says:

    Virus writers should stop taking advantage of the idiocy of novice computer users with this kind of psychology that any smart person can see through, and instead go back to finding zero-day exploits like the good old days.

  5. notsogreatsatan says:

    i always thought it would be funny to do something like that except with as the URL. malicious, sure, but not evil.

  6. Hyman Decent says:

    If the URL of the Web site to which the recipients were directed wasn’t a .gov, that should’ve been suspicious. And if the miscreant managed to hijack a .gov site, wow.

  7. dohtem says:

    This guy should have his knees smashed in.

  8. razremytuxbuddy says:

    Wow, that presumably took some effort. First, he would have to design an authentic looking ticket, then print up buku copies, and then do all of the legwork to put them on a bunch of people’s cars. And, he did it in Grand Forks, ND, which is one of the coldest places on the planet this time of year. The guy’s no slouch. A criminal, yes, but a hard-working one.

    • GearheadGeek says:

      @razremytuxbuddy: Buku? Really? Try “beaucoup” next time.

      The guy probably paid a few poor people in cash to distribute them. And if he’s any good, he found a way to scam the self-serve copiers at some Kinko’s or Staples to get his fake tickets printed up.

      • razremytuxbuddy says:

        @GearheadGeek: LOL! I spelled it the way I pronounce it. I’m not French, and don’t want to misrepresent myself to be French. Thanks for making me laugh at myself for just a moment, though.

  9. ogremustcrush says:

    At least in this case it should be comparatively easy to find someone to blame. If there were any security cameras nearby they could catch this guys face, or they could try to pull fingerprints off the cars. Most likely he is only some peon the Russian mob or whoever hired to do this, but they could trace his contacts to attempt to find who is distributing this. Online these sites spreading this stuff are always obscured with 6 fake companies and fake registrar info. Half the time they’re hosted on the bot-netted machines themselves. Having an actual human lead is much more promising.

  10. Mary says:

    This irritates me. We already have enough people acting like they should just throw out our tickets when we give them, now this kind of thing is going to have people saying “Oh, but I couldn’t go to the website to pay, I thought it would infect my computer” or “Oh, I figured it was a fake”

  11. goodywitch says:

    I think it’s funny how there’s a combination of anger and awe at what the guy did.

  12. bombledmonk says:

    Well geez the suckers are from UND, no wonder they were dumb enough to fall for it.

  13. Oranges w/ Cheese says:

    The only problem I see here is that the idiots were using Internet Explorer – which may as well be considered malware cheesecloth. One of my clients just called me yesterday with something similar, they complained that the virus scanner “I put on their computer” was giving them some error – and it sounded fishy.

    Turns out it was a popup from “Windows Security Defender” or somesuch, which is malware propagated through Internet Explorer’s security holes. I told him to do a REAL Anti-Spyware/Virii scan and get rid of it.

    • Mary says:

      @Oranges w/ Cheese: Windows Defender is NOT malware. It is a legit Windows Firewall program (that does no good, but is not malware itself).

      There IS though a couple of Malware programs that imitate Windows Defender very effectively and there are only one or two clues to set off somebody very familiar with the program that it isn’t a real warning/pop-up. And once that pop-up happens, the computers already well infected anyway.