NOW READ THIS
("Security Advisory")

Go Back

---

Submitted by: Bill Hickey
NCVA List Master

NRT-0111 Banker Trojans Targeting Financial Data On the Rise:

Trojans designed to steal financial information constitute one of the fastest growing threats to internet users, security experts have warned. Panda Labs highlighted the serious danger posed by a recently detected example, the StealAll.A Trojan, which injects a DLL (Dynamic Link Library) file in the internet browser to steal data that users enter in online forms. According to the security company, 53.6% of the new malware samples that appeared in 2006 were Trojans, 20% of which were banker Trojans - the most frequently detected category. Panda believes the rapid evolution of banker Trojans is largely due to the use of additional security measures by financial institutions, such as virtual keyboards used to prevent traditional key-loggers from recording user keystrokes. Cyber criminals are constantly seeking to counter such security measures; for example, the recently detected Banbra.DCY Trojan is designed to take video shots in order to see exactly which characters users enter on the virtual keyboard. Another common technique - pharming - uses Trojans that tamper with the domain name system used to direct users to web pages, sending them to spoofed banking or financial pages designed to capture the data entered. Banker.CHG is cited as a typical example of a Trojan designed for pharming. "[Banker] Trojans are created specifically so they can be installed and operate without attracting attention. For this reason users need proactive technologies to detect new threats by analyzing their behavior," warned Panda.

(www.itnews.com.au 30MAR07)

Last Modified: Sunday, 08-Apr-2007 13:51:10 EDT