Parking tickets actually malware attacks in disguise

Thu Feb 5, 2009 12:02PM EST

See Comments (75)

The last place anyone would expect to face a computer security attack is on the windshield of their car in the form of a parking ticket.

But that's the latest -- and intensely clever -- way that hackers are attempting to goad people into visiting infected websites and willingly install malware on their machines.

The scam is instantly clever once you hear how it works: Hackers print up phony "PARKING VIOLATION" notices and plaster them on cars parked on the street. The phony ticket directs the car's owner to visit a certain website, and of course the website in question (which largely seems to comprise of photos of badly parked cars) is a hack site which attempts to install malware on your PC.

Essentially what we have here is a phishing attack that takes place in the real world instead of via email. The use of fliers on parked cars is what's truly ingenious: A similar attack sent via postal mail would probably have minimal effect, but people are incredibly protective of their cars, and I imagine these windshield fliers will actually have a pretty good percentage of people typing in the URLs typed on them.

The good news -- for now -- is that the fliers are extremely crude, printed on yellow paper and offering nothing in the way of legal language that would compel a sophisticated and naturally skeptical reader to even visit the website in question. Like the earliest email phishing attacks, this attack may be simplistic, but it's probably a precursor of more advanced attacks to come. When hackers scan in real parking tickets and reprint them, replacing the URL printed there with one for a sophisticated attack site, then the sparks are going to start flying. (Installing malware is boring by comparison... I expect the real attacks will involve collecting money and hijacking credit cards and bank accounts wholesale.)

This appears to be a very limited attack (reported only in Grand Forks, North Dakota) for the time being, but it's a good idea to keep your skepticism handy next time you receive a parking "violation," just in case.

Comments on Parking tickets actually malware attacks in disguise

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 27 Posted by cybertwang on Thu Sep 3, 2009 3:33PM EDT Report Abuse

    social engineering is on of the most potent tools a hacker has.....it's always been that way.

  • 28 Posted by aldrich.keith on Thu Sep 3, 2009 2:49PM EDT Report Abuse

    Great....now anyone who HADN'T though of this idea, is now aware of it. Thank you Internet.

  • 29 Posted by ninjagirl196440 on Thu Sep 3, 2009 7:39PM EDT Report Abuse

    well i tell ya i'm ashamed of our neighboring state for not checking the cams to see who was doing this and secondly i think this is insane and foolish and i use firefox and so therefore i dont have to worry so much about it i also use other progs so as to alert me when these types of things happen. Where i live we have a local office or the court house we can pay our fines for parking violations and such at as so therefore there is no need to visit a site to pay it lol. those who visit the site to pay a parking ticket are just foolish people who really have no idea as to how the real world works no matter how sad the world is. IT IS WHAT IT IS AMERICA LOL DEAL WITH IT WE ALL HAVE TO

  • 30 Posted by kc_ga_fan on Thu Sep 3, 2009 4:48PM EDT Report Abuse

    Some of us need to use MS Internet Explorer, which is better at finding errors in XML documents, and it is the only browser to do so. Take that, firefox! Can we please stop trying to ruin others' lives with stupid petty stuff like malware and virus & hacker crap? I agree, put them away and don't allow them to use the internet. It's people like that that ruin it for the rest of us who are actually trying to do good online.

  • 31 Posted by sethhh36 on Thu Sep 3, 2009 9:14PM EDT Report Abuse

    so i hope they took the tickets to the police, to lift finger prints,..to try to find the people leaving the tickets on the windshield...that way they can track down who these internet terrorists are!!!!!!

  • 34 Posted by specializedfire on Thu Sep 3, 2009 9:35PM EDT Report Abuse

    to think they would spend their more printing fliers for malware...

  • 35 Posted by dbic2222 on Thu Sep 3, 2009 3:38PM EDT Report Abuse

    I guess there will be bigger better versions of this scam coming out after people read this article. I know the word has to get out so things like this have a better chance of failing, but it also passes the idea along. I just wish these people would stop with the computer infestations!

  • 36 Posted by lonewolfed on Thu Sep 3, 2009 6:56PM EDT Report Abuse

    You just told tens of thousands of people how to pull a good scam instead of leaving it an isolated incident in Grand Forks, and you probably don't get more isolated than that! I love the press.

  • 37 Posted by tpasserell0200@sbcglobal.net on Thu Sep 3, 2009 10:18PM EDT Report Abuse

    It may be an isolated attack at the moment, but now that millions have seen this article, I'm sure others are going to try it now....

  • 40 Posted by doty55@bellsouth.net on Thu Sep 3, 2009 3:47PM EDT Report Abuse

    just like traffic lights being able to send any motorist a ticket through the mail ! whats next susspending and issueing a warrant because maybe the plate and driver of 2 diffent people! does this mean both get ticketed for thst offense?

  • 41 Posted by tylernmi on Thu Sep 3, 2009 10:26PM EDT Report Abuse

    If they weren't smart enough to use real parking tickets, now they know how, thanks to the instructions....way to go

  • 42 Posted by valamircleaver on Thu Sep 3, 2009 10:30PM EDT Report Abuse

    People like this deserve to be drug out into the street and beaten like the dogs they are in front of all the public to see... /:)

  • 43 Posted by monkiesfromyouranus on Thu Sep 3, 2009 7:25PM EDT Report Abuse

    i agree.... a long time ago hackers used to be just people who wanted data.... this is a bad scam involving are already deplorable departments of vehicular control. the federal government should step in and start fixing this problem... god knows the nsa should have some extra time on there hands ( just kidding ) get the hackers to understand that this is in fact intolerable and we should come to a conclusion to this kind of problem.

  • 44 Posted by michael_labriola on Thu Sep 3, 2009 7:18PM EDT Report Abuse

    This story is inventing a problem. Actually, it it giving potential criminals more ideas.

  • 45 Posted by redfang39 on Thu Sep 3, 2009 8:34PM EDT Report Abuse

    These IDIOTS dont have much else to do, Do they? Sounds like things that some one that has a lot of time on their hands. Shizzzzzzzz

Post a Comment

Sign In to Post a Comment

My Tech

Please enable your browser's cookies to activate the My Tech column.

Also on Yahoo! Tech

Computers Home Office Wi-Fi & Networking Phones & PDAs Cameras & Camcorders TV & Home Theater Portable Audio
 

Site Map | Tour | Subscribe to Yahoo! Tech

Question and Answer content at Yahoo! Tech is written by Yahoo! users at Yahoo! Answers. Yahoo! does not evaluate or guarantee the accuracy of any Yahoo! Answers content. For more information, read the Full Disclaimer.

Opinions expressed by the Advisors are their own and do not necessarily reflect the views of Yahoo! Inc. Yahoo! receives no compensation from any manufacturer or distributor nor does it compensate any Advisor for the coverage of any product or service in any Advisor's content.