There is a new Trojan in town, called Kardphisher, and it could be one of the trickiest computer scams ever made. It uses the annoying Windows Activation to make a user think that their system has been activated on another computer. It then prompts them to reactivate their PC by entering in some of their personal information, including their credit card number.




Here is what the “activation” process looks like with the Trojan:

Windows Activation Trojan

If you don’t enter in the credit card details the Trojan will shutdown your computer. The creator even took it a step further by preventing you from running or switching to another application which is what makes this really nasty.

The Trojan also stresses that your credit card information is only for verification purposes and will not be charged:

We will ask for you billing details, but your credit card will not be charged.

Do none of these scammers ever proofread? It should be “ask for your billing details,” and they are making it even more obvious that this is a scam by not proofreading. I’m sure most people who are infected by the Trojan won’t even think twice about proceeding witht the activation process, so try to warn friends and family about this.

Symantec has some recommendations on how to remove the Trojan for those that have been infected by it.

Source: Tech World