Have E-ZPass? Watch out for slimy ASProx-based malware ploy

Internet Crime Complaint Center says ASProx botnet at heart of new con

The Internet Crime Complaint Center today said it has gotten more than 560 complaints about a rip-off using the E-ZPass vehicle toll collection system that uses phishing techniques to deliver malware to your computer.

E-ZPass is an association of 26 toll agencies in 15 states that operate the E-ZPass toll collection program.

+More on Network World: Gartner: IT careers – what’s hot?+

The IC3 said a victim receives an e-mail stating they have not paid their toll bill. The e-mail gives instructions to download the invoice by using the link provided, but the link is actually a .zip file that contains an executable with location aware malware.

The IC3 said it does not appear the E-ZPass e-mails actually attempt to entice recipients to pay anything. Rather, the infected machines are reportedly used for advertising click-fraud.

The IC3 noted that some of the malware’s command and control server locations are associated with the ASProx botnet, which has been around since 2007 and previously disseminated other spam imitating major retail stores.

The IDG New Service wrote of the ASProx Botnet: Asprox's spam campaigns are dual purpose since they also deliver malware through attachments and harmful links, which allows it to continue to grow and gain control of more computers. In the past it has been linked to the "partnerkas," Russian affiliate programs where the botnet operators earn a fee for infecting new computers with fake antivirus software. Asprox has been upgraded to make it more effective. It now uses a variety of spam templates in different languages in order to maximize its range of victims.

More recently ASPox has been linked to the Pizza Hut free pizza scam that said you could get a coupon for a free Personal Pan Pizza from Pizza Hut by clicking on a link in an email that looked like it was from Pizza Hut.

Also recently ASPox is behind a spam mail that claims that the recipient has been sent one $20 worth Card eGift of Starbucks from AT&T which he can access by clicking the web-link labeled "Print Your Gift" and then take its print out for use. The Starbucks Card can be utilized for making purchases from any Starbucks shop. According to SpamFighter.com Indeed, rather than produce the claimed card, the web-link takes onto one hijacked site having malware.

Check out these other hot stories:

Follow-up: Virgin Galactic spacecraft crash

Air Force envisioning swarms of tiny, inexpensive, almost disposable drones

Guinness World Record: Amplifier operates at a speed of one trillion cycles per second

Virgin Galactic’s space plane crashes during test flight

US Navy, Energy Dept. team to develop wave energy devices

FBI: List of purchase order scam victims growing rapidly

Quick look: The 76 year-old “War of the World” broadcast rumpus

The FCC as data security cop: $10 million fine for carriers’ security breaches

Hacker group leader gets 24 months in federal prison for attacking US Navy, 50 other institutions

Ebola crisis brings out another sickness: Vile scammers

FTC gets $10M from massive text spam, robocalling schemers

The oil used to fry your eggroll for lunch might fly you to the coast in the afternoon

US Justice Dept. focuses new squad on cybercrime combat


Copyright © 2014 IDG Communications, Inc.

The 10 most powerful companies in enterprise networking 2022