Stupid "Jailbrake" Scam Spreads Malware
A recently discovered Trojan is being spread by inexperienced users' interest in jailbreaking their phones. As reported by BitDefender
, the malware authors send out spam email promising users a simple unlock. The spam directs users to a website where they can download software, which hijacks the Windows computer's DNS requests to their own server, allowing them to redirect users to fake, malwarey versions of popular websites. The Trojan does not, as yet, affect Mac OS X computers.
According to the email, users can easily unlock their iPhones by clicking onto a link and going to a website. Once on the page (which supposedly teaches users how they can "jailbrake" their iPhones), users are directed to connect their iPhone to the PC. Once connected, they download an application to their PC and "run it on their iPhone" (though BitDefender doesn't make it clear how an app can be loaded on the iPhone without iTunes). Apparently, though, the iPhone program hides malware that is being identified by BitDefender as Trojan.BAT.AACL. All this Trojan does is redirect DNS requests to a site on the 188.210.x.x. subnet. Unsuspecting users can then be subject to phishing and other attacks while thinking they're browsing legitimate websites.
Sometimes it's hard to remember how really obvious some of these scams are. However, they work by the numbers, and even if one in a thousand users is gullible enough to fall for the solicitation, that's worth a lot of money to the scamsters.
But still: "jailbrake?"