Panda security has detected more than 200 spoof Web addresses using the name of Justin Bieber as bait to lure users.

By including the name of this popular singer in malicious links, cyber-criminals are distributing the fake antivirus MySecurityEngine.
References to Justin Bieber in malicious links include, among others:
justin bieber takes estrogen pills
justin bieber smoking weed
justin bieber born in 1998
justin bieber north korea
justin bieber arrested
justin bieber died
justin bieber drinking problem
justin bieber gender change operation
justin bieber hermaphrodite
There is nothing new about the way this infection operates, according to Jeremy Matthews, head of Panda’s sub-Saharan operations.
When somebody runs a search for the singer on the Internet, these fake web sites have been indexed to appear among the first results displayed. If users click these links, they will be prompted to accept the download of a file, such as a codec, and the fake antivirus will be installed on their computers.
“These types of activities have become increasingly common," says Matthews. “Any popular topic or issue is used by cyber-crooks to spread their creations. By positioning websites used to distribute malware among the first results in search engines, they can be sure that numerous Internet users will inadvertently download the fake antivirus."