Forget phish, start fumigating for RATs
A stream of text captured by a remote access Trojan
horse, according to CardCops' Dan Clements. It included
a series of Bank of America login passwords,
which have been blurred by MSNBC.com.
Image source: MSNBC / CardCops
Bob Sullivan writes in MSNBC News:
Forget phish. It's rats that are about to cause the most trouble for Internet users.
Clever computer criminals have recently become much more sophisticated in their attacks against online banks, experts say. The Internet is now awash in programs called "remote access Trojans," or RATs, that feed on online banking passwords.
Trojan horse programs have traditionally sneaked their way onto computers by posing as desirable free software, such as electronic greeting cards or file-sharing programs. The malicious programs are hidden, and like the Greek soldiers hidden in the famous wooden horse, jump out to attack once they're safely inside. But others are pushed onto computers without any interaction at all, through various software vulnerabilities. In that case, consumers would likely have no way of knowing their machine has been subdued.
These new remote-access Trojans are designed specifically to lurk in the background, waiting until the unsuspecting user types the name of a well-known bank into a Web browser. Then, the program springs into action, copying every keystroke. The data is sent back to the criminal, who now can raid the online bank.
0 Comments:
Post a Comment
<< Home