malware

Hackers Steal Millions from Banks

Episode 1162

Back in 2013, in what has been the largest hacking theft in history, hackers used malware to break into the computer networks of several major banks and stole over $300 million worldwide, and could actually be three times as large, the largest theft in history. No bank has come forward claiming they were victims and security firm Kaspersky has been retained to investigate. Leo says these attacks happen all the time and that Banks cover it up to prevent clients losing faith in the institution. How did it happen? It appears to be the old phishing scam with bank employees as the target.

Is removing a virus the same process on the Mac as it is on the PC?

Jay from Providence, NC

Episode 1159

Jay wants to know if removing viruses is the same between Mac and Windows. Leo says that there's a debate that Macs are either more secure, or are a smaller target because there are fewer of them. Leo says that malware writers are going to write for the largest segment of computers. But OS X is based on Unix and that's more secure than Windows. OS X also has an administrator requirement when installing software.

How can I get rid of Dropper GEN?

Episode 1154

Don from Sherwood Park, Alberta, Canada
Virus Detected

Don runs Windows 7 on his laptop, and was running Avast AVS which found a "Dropper GEN" virus. Leo says it's a nasty trojan virus. It's a dropper package which goes out and gets more malware. So if it's a true dropper, Don has problems. Don should try running a second screening using Microsoft's Malicious Software Removal Tool (Start-Run-MRT.exe-Enter). He could also try Eset's online antivirus screener as well, and Eset has a removal tool that also removes itself when it's done. Don tried running Kaspersky and it didn't' see it. Leo says that could mean it's a false positive.

How can I get rid of a hacker who's stalking me?

Episode 1151

Karen from Sun City, CA
Hacker

Karen is having an issue with an online stalker who has hacked into her computer and has been deleting her files and other things. Leo suspects that Karen isn't really being hacked unless she has incurred the wrath of someone who can do that. More likely, what may be happening is that she's got malware and she probably should format the hard drive and reinstall Windows from a known, good source.

Is the new Bitdefender Box legit?

Episode 1151

Tom from Warren, OH

Tom saw a new box from Bitdefender at CES that promises to be in between the internet and the computer and cleanses all traffic. The box connects to the router and it will prevent malware from getting through. They plan to ship it for $200. Leo says the premise of this is good, but may not necessarily be better than a software antivirus because if software doesn't know about a virus, neither will the physical box. We can't even be sure it will ship at all at this point either.

Should I pay the FBI with MoneyPak?

Episode 1147

Neil from Colorado Springs, CO
Scam Alert

Neil got a popup from the FBI saying that if he pays a fine of $300, he'll be cleared of any charges from "online porno" that he's never done. Leo says that it's called the FBI MoneyPak Scam and it's a scam designed to get users to pay up out of fear. Leo says it's easy to fix by simply backing up his hard drive and reinstalling Windows. That's the only way to be sure he's free of it. But under no circumstances should Neil pay up. The FBI wouldn't offer a "get out of jail free card" with an anonymous payment from 7-11.

How can I get rid of Trovi?

Mary from Los Angeles, CA

Episode 1146

Mary wound up getting a program called Trovi installed, and she can't get rid of it. Trovi is a lot like Conduit, and it's a browser hijacker that often comes with free software. Some don't think it's malware, but if it tricks the user into installing it and makes it difficult to be uninstalled, then it's definitely malware. And shame on CBS, which owns download.com, for allowing this junk to be installed onto people's computers. Mary can remove it in Add/Remove Programs, but she'll also have to change her browser settings or it could come back.