Fake iTunes Attacks Windows Users

People are receiving emails for an iTunes update. The email contains a link the takes victims to a page identical to the iTunes download page offering the latest iTunes update. The download is really malware.

The malware was discovered by BitDefender as Backdoor.Bifrose.AADY, a variant of Backdoor.Bifrose.NBackdoor.Bifrose.AADY becomes part of the Windows process explorer.exe with the purpose of creating a backdoor for criminals to take control of infected computers. In addition to creating a backdoor Backdoor.Bifrose.AADY also logs passwords to email, chat programs, and protected storage. It also captures software keys and serial numbers.

One way to know the email is a fake is that when Apple does send out emails about iTunes updates to its users the email links to Apple.com and not a download page. In addition to examining the link make certain your antivirus software is up to date, and has real time web scanning available. Download iTunes updates using the Apple update tool in iTunes, or by navigating Apple.com. And never click on a link if you cannot verify the identity of the sender of the email.


One thought on “Fake iTunes Attacks Windows Users

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s