Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

ScareWare Marketer Gets Whacked With $163 Million Judgment

The Federal Trade Commission (FTC) said today that a federal court has inflicted a judgment of more than $163 million on the final defendant in its case against an operation that used “scareware” tactics in order to trick consumers into believing their computers were infected with malware, and selling them software to “fix” a non-existent problem.

The Federal Trade Commission (FTC) said today that a federal court has inflicted a judgment of more than $163 million on the final defendant in its case against an operation that used “scareware” tactics in order to trick consumers into believing their computers were infected with malware, and selling them software to “fix” a non-existent problem.

In 2008, the FTC charged Kristy Ross and six other defendants with tricking more than a million Internet users into paying $39.95 or more for software to remove non-existent malware that appeared to be detected by scans.

The FTC said the operation utilized online ad networks and other popular web sites to promote “technologically sophisticated” Internet ads that displayed to consumers a “system scan” that would invariably detect a host of malicious or otherwise dangerous files and programs on consumers’ computers. The bogus “scans” would then encourage consumers to buy the defendants’ software for $40 to $60 to remove the said malware.

According to the FTC’s original complaint, the fake security software included products such as WinFixer, WinAntivirus, DriveCleaner, ErrorSafe, and XP Antivirus.

In addition to the $163 million judgment, the court order permanently prohibits Ross, from selling computer security software and any other software that interferes with consumers’ computer use, and from any form of deceptive marketing.

Under a settlement announced in 2011, defendant Marc D’Souza and his father, Maurice D’Souza, were ordered to give up $8.2 million in fraudulent gains. Two other defendants previously settled the charges against them; the FTC said that is obtained default judgments against three other defendants.

Of course the FTC is is unlikey to ever collect on the $163 million.

Written By

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...