Safe + Secure
PC Matic Complete Security
Products
Antivirus
PC Matic VPN
Identity Protection
PC Matic Privacy
Support Unlimited
Threat Awareness
How PC Matic Protects You
SuperShield Allowlist
Business Protection
PC Matic Pro
PC Matic for SMB
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
The Cyber Scam Report
Town Hall Sessions
Tools & More
Password Generator
Internet Speed Test
What Is My IP?
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Hackers Boost Sophistication With Fake Microsoft Security Essentials BSoD Attack

Hackers are now using advanced methods to distribute malware…

Hackers have found new ways to copy notifications from what users would consider safe programs.  The latest example of this is the blue screen of death (BSoD) that appears after users attempt to download a fraudulent version of Microsoft Security Essentials.  Microsoft does have a BSoD alert that looks quite similar to the tech support scam BSoD shown below.  However, the legitimate screen will not have the last line, offering a phone number for “support”.

bsod

Microsoft reported any true messages from them will not include support contact information, nor will they ever request payment for providing technical support.

According to ZDNet, this form of malware has been named Hicurdismos.  Once infected, the malware will disable the Task Manager to prevent the user from terminating the BSoD.  Hicurdismos will also hid your mouse curser to make you believe your computer is frozen.

But wait, there’s good news!  Assuming you’re using PC Matic, SuperShield can effectively block this malware, and here is how.  Since this is an unsigned piece of malware it will immediately be stopped by SuperShield. It may pretend to be a Microsoft file once installed, but SuperShield can see it is unsigned and by a fake corporation, “BlueStackz LLC” and will not allow it to execute. Legitimate Microsoft files are signed by the company themselves, and help to distinguish fake files from real files.

Microsoft SmartScreen will also prompt users not to run the program that is infected, since Hicurdismos is not signed with a Microsoft certificate.  The SmartScreen will provide a message stating running said program could be harmful.  Now, this won’t help if the PC user disregards this message and runs the program anyway.  This is why it is important to read the messages that are coming up on your screen.  Quite often users are too eager to click the “Yes” or “Run” button to get the end result, they forego reading what their PC could be warning them about.  It’s important you take the time to do so, it could save your computer in the long run!

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles