New computer virus targets Venezuelans after vote

Oct 12, 2012

(AP)—A newly detected computer virus aims to steal Venezuelans' online credentials using a link that purports to reveal information about the country's recent presidential election, the digital security company Kaspersky Lab said on Friday.

The was launched after Venezuela's Oct. 7 presidential election and was spread by email, said Dmitry Bestuzhev, head of the Moscow-based company's research and analysis team in Latin America.

At least 75 Kaspersky customers came under attack by the malware, and non-customers surely did, too, he said.

Bestuzhev said in a blog post on Friday that the malicious file is named "listas-fraude-electoral.pdf.exe," which translates as "electoral fraud lists"—a title likely to make some Venezuelans curious after President 's re-election victory.

He explained by email that computer users received an email message with a link. Once a victim clicked on the link, he said, the person was redirected to a fake website purporting to belong to the Venezuelan Globovision.

"After the click the malicious file was automatically downloaded," Bestuzhev said. However, said its antivirus system successfully blocked each attempt by the malware to infect its customers' computers.

Bestuzhev said the malware allows criminals to steal victims' banking information and also online credentials for those holding accounts with Venezuela's currency agency, known by its Spanish initials CADIVI.

Venezuela's government maintains strict foreign currency exchange controls, and the currency agency provides people who apply with limited amounts of dollars or other currencies for purposes including travel, certain imported goods and overseas tuition payments.

The malware was designed to gain access to Venezuelans' CADIVI accounts to use their allotted dollars, Bestuzhev said.

"Being that this malware is quite simple and also targeting only Venezuelan banks and CADIVI, we can strongly assume that the cybercriminals who produced it are from Venezuela too," he wrote on the blog.

Officials at the government's currency agency and Science and Technology Ministry could not be immediately reached for comment.

Bestuzhev said the malware was detected by was "proactive crawlers," which work like a sort of search engine and are designed to hunt down malicious URLs.

Explore further: Lions Gate partners with online outfit RocketJump

More information: Bestuzhev's blog post: www.securelist.com/en/blog/208193897/Stealing_currency_permits_from_the_Government

2 /5 (1 vote)
add to favorites email to friend print save as pdf

Related Stories

Hackers promise AFP photos in 'email scam'

Oct 21, 2011

A computer security firm warned on Friday that cybercriminals were attempting to exploit Agence France-Presse photos of slain Libyan dictator Moamer Kadhafi in an email scam.

Shoplifters hit up Chrome Store for Facebook data

Mar 28, 2012

(PhysOrg.com) -- A cash-for-Facebook’s-“likes” hustle hanging out in Google Chrome Web Store has been discovered by Kaspersky Lab. The researchers first discovered extensions leading to the ...

Recommended for you

Instagram photo-sharing service goes down

Apr 12, 2014

Popular photo-sharing site Instagram was not working Saturday, as frustrated users quickly turned to social network Twitter and other web sites to share their complaints.

Authors Guild asks US court to rule against Google

Apr 11, 2014

The Authors Guild says that Google Inc. is stealing business from retailers and has asked a New York federal appeals court to find that the Internet giant is violating copyright laws with its massive book digitization project.

User comments : 0

More news stories

Intel reports lower 1Q net income, higher revenue

Intel's earnings fell in the first three months of the year amid a continued slump in the worldwide PC market, but revenue grew slightly because of solid demand for tablet processors and its data center services.

Low Vitamin D may not be a culprit in menopause symptoms

A new study from the Women's Health Initiative (WHI) shows no significant connection between vitamin D levels and menopause symptoms. The study was published online today in Menopause, the journal of The North American Menopa ...

Astronomers: 'Tilt-a-worlds' could harbor life

A fluctuating tilt in a planet's orbit does not preclude the possibility of life, according to new research by astronomers at the University of Washington, Utah's Weber State University and NASA. In fact, ...