|
2007 is a year of User Created Software (UCS) and User Created Contents (UCC). Although UCS existed in the past along with UCC, it was not categorized, as there was no specific term for it. But, owing to the emergence of the term UCC, it is now labeled UCS.
UCC literally means software created by a user. In other words, it is the common name for software created by an unspecified individual user, not by a company. In general, software created by a company is for commercial purpose, whereas the pure purpose of creating UCS is to help other people. With this, the popularity of UCS is increasing day-by-day with the advantage that allows users to use the software they need for free, if they take the time and effort to find it.
However, this advantage can be exploited to deceive and cause harm to users with malicious software, to expose their computers to security threats. Let's go through the types of such malicious UCS and learn how to deal with them efficiently.
[Type 1] Free webcam chat site
Some webcam chat sites pay for advertising and enticing a registration to their sites. This type of UCS is created and distributed for making money with those web sites.
[Picture 1] UCS under the disguise of a patch that offers free webcam chat service
Generally, it is distributed as a patch that enables users to use a paid webcam chat site for free. But, when you run the program, it opens a specific webcam chat site as in [Picture 2] by sending a partner ID and entices a registration to the site. In general, it entices a registration by showing the most provocative images on the main page.
[Picture 2] UCS under the disguise of providing free webcam chat service
This program calls a specific site when it is executed. If you look at the source code of the site, you can see that it takes you to the specific webcam site with the partner ID. (Refer to Picture 3.)
[Picture 3] Moving to the specific webcam chat site with partner's ID
Registering to a UCS simply out of curiosity could cost you money and leak your personal information.
Most UCS that advertises free service are created for such purpose, taking money from your pocket. Hence, it is advisable not to use such abnormal programs.
[Type 2] Online money generator
This type of UCS that says it creates the online money of popular sites is created and distributed to advertise a specific site. As seen in [Picture 4], it runs after showing a message box saying ¡°You must share this information with 10 other people first¡±, the same way a chain letter works. It is to distribute the software more efficiently via people.
[Picture 4] Unique distribution method
When the program is run, it displays the message to share it with other people once again as in [Picture 5], and automatically runs the specified site after showing the URL of the site. That is, the primary purpose of the program is to show the Web site and advertise it.
[Picture 5] UCS under the disguise of generating the online money
Using such an illegal way to take financial gain, it causes you more trouble and you cannot even report damages done by such software. Hence, it is recommended to always use a service in a legitimate way only. And when you come across such software, it is important to report it to the associated company as soon as possible to prevent more victims.
[Type 3] Gift certificate number generator
It is software to collect the money given to recommenders of new registrations.
As in [Picture 6], it says that a certified password is required to create code numbers and the password can be obtained free from a specific site. However, if you visit the site, you are asked to join the specific site and register the recommender¡¯s ID for getting a password. However, the software is just a simple button that does nothing. The software is a program with dummy buttons that cannot perform any functions. In actual cases, the operator of such sites enticed users to join the site and collected the money given to recommenders, before closing them down. It leads users to join unwanted Web sites and eventually to leak their personal information.
[Picture 6] UCS under the disguise of generating the gift certificate number
Such software does not exist, and even if it does, it is illegal. As attempts to make money in a way illegitimate or cheating may result in severe civil and criminal penalties, remember there is no gain without pain.
[Type 4] Visitor tracer
It is a Web service UCS that traces visitors who visit a popular web community site ? Cyworld - but it actually installs adware and rogue anti-spyware in the user's computer without user's consent. It makes itself seem to be performing features that the users want and entices users to use them when they visit the site as in [Picture 7].
[Picture 7] UCS under the disguise of visitor tracer
When executed, you are asked to change the security settings of your Internet Explorer as in [Picture 8].
[Picture 8] UCS under the disguise of visitor tracer
This is actually the preparation process to install spyware and rogue anti-spyware, which are embedded in the page without user's consent. More than ten spyware and rogue anti-spyware are installed without user's consent once the user click on the "Resend" button in [Picture 8], and the user is not aware of them even being installed. The installed adware change significant settings of the user's computer and rogue anti-spyware shows exaggerated result to make users pay for their repair.
A more serious problem is that ActiveX and the programs installed by ActiveX will be installed without the user's consent due to the security setting changes of Internet Explorer, and it eventually make the user's computer unable to perform normal operations.
As the Web itself is becoming a platform in the Web 2.0 era, it seems that the number of such services is increasing, since software can be used in Web browsers directly, going beyond the norm that software can only be run after being downloaded and installed. Hence, users should also be careful not to be deceived by such UCS any more.
In addition, software not created by the actual service provider does not guarantee normal operations, and as you see in the above cases, it could lead to serious problems. Also, under certain circumstances, you could end up being restricted to services you are currently using, and you will be responsible for it.
Therefore, it is advisable to only use programs provided by actual service providers, since most illegal programs are there to trick users. You have be extra careful when asked to change the settings of your system or to enter personal information such as email address, resident registration number, or password.
[Type 5] Messenger block checker
Some sites trick users into visiting their sites by sending a false message that says you can check the list on who blocked you on MSN Messenger. These sites are created using social engineering techniques to make financial profit by increasing the number of advertisement exposures and click-through rate.
The site sends the message, [www.whoadmits***.com <- Find out who deleted or blocked you from the MSN] via MSN messenger. Unsuspected users visit the site as in [Picture 9] and enter their MSN ID and password onto the site. However, this process gives away their MSN ID and password to the attacker, instead of checking the buddy list.
[Picture 9] UCS under the disguise of messenger block checker
The MSN IDs and passwords entered onto the site become targets to be hacked, the same message is sent to your MSN Messenger contacts, resulting in increased number of visitors and victims.
Also, MSN accounts hacked in this way become exposed to other malicious threats. In fact, this problem occurs because users do not use a service as they should, in the normal way.
Hence, you should not use the service if not offered by the actual service provider as in [Type 4] and be extra careful when you are asked to provide your personal information (email, resident registration number, or password).
As seen in the above 5 types of malicious UCS, UCS have the following characteristics:
- Provides free services
- Provides free online money and gift certificates
- Provides extra features not provided by the actual service provider
- Requires user's personal information (email, resident registration number, or password)
- Requires registration and recommendation to other sites, in order to use the software
You should be careful when using software that offers such features and use it after studying the software through the Internet search engines.
In fact, most UCS are useful software that enable us to use the computer more efficiently and effectively. But, a large number of innocent users are harmed by rogue or false software that some malicious people have created and distributed for their benefit. Hence, software vendors should develop software in the user's position and, users need to pay more attention before downloading and using programs, and entering their personal information.
By Si-Joon Park, Researcher of ASEC, AhnLab Inc.
|
