A new social engineering scheme has surfaced, which tries to convince folks they can save $100 by ordering the new iPhone online. This new attack is well crafted and even appears to spoof Apple's true e-commerce web site address. Users can become infected by visiting malicious websites which can automatically download and install the trojan horse, if IE security controls have been lowered. Users should always be aware of scammers, as there are no free lunches in most things offered to us via the Internet.
Trojan AyFone.A - New iPhone based Phishing attack
QUOTE: scammers are using the iPhone to try to steal money from unwitting customers looking to get their hands on the new Apple cellphone. This morning, Sunbelt researchers discovered a new custom Trojan that attempts to steal money by selling a fake iPhone. This Trojan looks custom-built and has very poor coverage by AV vendors
QUOTE: Phish-BuyPhony is a Internet Explorer Browser Helper Object (BHO) maliciously designed to hijack well known websites to steal money by masquerading Apple's iPhone on-line shop. When successful, the victim is brought to a fake site where payment is made to the crooks via Western Union or MoneyGram.
McAfee Protection: DAT 5605 provides detection for this new threat
Trend: Trojan AyFone.A Information
Trend: Trojan AyFone.A - Behavioral Diagram of Attack Process
QUOTE: This Trojan arrives bundled with malware packages as a malware component. It can also be downloaded by a user when visiting malicious Web sites. It registers itself as a Browser Helper Object (BHO) to ensure its automatic execution every time Internet Explorer is run. It opens a popup window every time Internet Explorer is pointed to the popular Web sites www.yahoo.com and www.google.com. This popup window displays the following advertisement about the Apple iPhone.