This may be a huge problem, Increasing credit card fraud. Let's hope its off the web and the creator(s) go to jail.
i hate this tec and the antvir software wont alarm about this
I suppose for this "Trojan Banker" to function it has to lay on your comp. Use Linux and it won't happen!
this is interesting.
i think the world is getting more and more dangerous and we definately need to protect ourselves more and more. :(
Internet Marketing for Newbies
I highly recommend Snoopfree 1.0.7 from snoopfree.com, it is a great utility against all kind of keyloggers including screen capture technique.It runs smoothly with other security product.
The best protection against this kind of fraud is to control access to data within the workplace. Run tight software restriction policies, and don't allow any executables through your gateway/proxy/mail server (easily done in ISA server). Install some anti-virus protection on the gateway/proxy, and utilise several programs if necessary. Ensure passwords are regularly changed, and if the situation permits, you could have the roaming profile just load a default registry hive at each logon which would ensure that any nasty trojans got kicked out of the startup sequence. Anti-virus should be a *FINAL SAFEGUARD* against viruses. You should have other measures in place.
Also, if you have your gateway configured properly, it should not be possible for a trojan to communicate with the net. I work for a large banking institution, and we do not have web access unless we explicitly request it and log in via certificate authentication. ISA server logs all outbound requests and they are regularly reviewed by IT personnel.
For institutions with properly configured IT infrastructure, this should not present a problem.
This Trojan is not a problem!!
I live and work in Italy. I have a bank savings account, which is operated via telephone or internet, INGDIRECT.
When I log on to the web site, they use a virtual keypad. There are two security measures it has...
Firstly each time you log in the numbers are never in the same order.
The second, which is relevant for this Trojan, is that when you click the keypad the numbers disappear. Which, hopefully, makes it very safe!!! FOR NOW!!!
Please send trackbacks to: http://blog.hispasec.nospam/virustotal/9/tbZ3ping
Replace "nospam" with "com"
There are no trackbacks.