Gangsters are tricking internet users into buying anti-virus protection that is actually malicious software in disguise, security experts have warned.
Investigators fear the hacking gangs are pocketing millions of pounds by infiltrating customers’ computers and stealing their banking details.
They said criminals pose as legitimate IT companies who cold call victims offering fake security software that can be downloaded for about £30.
The crooks then combine credit card information from the sale with stolen personal information to defraud the customer or commit further crimes.
Sharon Lemon, who is responsible for fighting cyber crime at the Serious and Organised Crime Agency, said the fraud was “big business”.
She said: “In recent cases, we have seen gangs employing 300 to 400 people to run their operations and using call centre-scale set-ups to target victims en masse.
“They can also be paying out as much as $150,000 (£93,000) a month [on a pay per download basis] to individual webmasters, who are unwittingly advertising their fake software – this level of investment from criminals indicates that the returns are much heftier than this.”
The warning came at the start of an internet security awareness week organised by getsafeonline.org, which is supported by Government bodies, police and private companies.
Research conducted on behalf of the campaign group found that one in four adult web users in Britain had been approached by someone offering to check their computer for viruses.
Thousands of spam emails offering virus-check services have also been sent out, while almost half of all web users have seen a pop-up window claiming that their computer is infected.
Last month, Matthew Anderson, a 33-year-old computer security expert from Drummuir, Aberdeenshire, admitted being a key member of an international hacking group engaged in a similar scam.
He was caught after Scotland Yard and authorities in Finland investigated a gang, known online as the m00p group, who wrote computer viruses to order that were then attached to spam emails. Baroness Neville-Jones, the security minister, said: “While it’s encouraging to see that UK web users are today more security-aware, criminals will always try to be ahead of the game and will use increasingly sophisticated methods to take advantage where they can.
“However, equipped with the right information, there’s no need for anyone to be deterred from going online
or from protecting their computers with the right security software.”
Tony Neate, of getsafe online.org, said: “Web users should ignore cold calls from companies offering free virus checks, and be very cautious of any on-screen pop-ups.
“Most reputable IT providers do not approach customers in this way without prior notice or a direct