| Technology Post News ($)     Upload Images»
Log In»       Sign Up Now»
News» Top News» Latest News» Post News ($) Blogs» Top Blogs» Latest Blogs» Post Blog» Images» Top Images» Latest Images» Upload Images» TV» Groups» View Groups» Create a Group» Live Events» Alerts» Create an Alert» Manage Alerts» Help Center» Get paid to report news» Post blogs» Upload images» Embed video» Join/create groups» Vote on news & images» Comment & debate»
Post News ($)»     Post Blog»     Upload Image»     Groups»     Events»     Alerts»     Help Center»

article imageOnline Banking Users Urged to Beware of the New 'Silentbanker' Trojan

Published Jan 17, 2008, by Ringwraith
Join our team to voice opinions, share images, get paid to report news and more!
Listen
Email Print
Subscribe to author
Save as mp3 | Speech-enabled by ReadSpeaker
Related News From the blogs
Bank robbery suspect leaves his address on threatening note
Opinion: Biggest Government Heist of the Year, Who Follows the Money?
Arab Bank network adopts advanced compliance technology
Recipient email:
Your email:
optional
Message:
optional

Online Banking Users Urged to Beware of the New 'Silentbanker' Trojan

by Ringwraith.
Experts are calling the new trojan, one of the most sophisticated that they have encountered, capable of intercepting an online banking session and draining the victim's bank account.
Buy an ad on DigitalJournal.com
Users could pick up the trojan, from simply browsing websites, downloading the trojan without their knowledge and not know about it until they are suddenly aware that they have been a victim of bank fraud.

Al Huger, the vice-president of Security Response and Services for Symantec said that more than 400 banks worldwide have been targeted by the trojan, that operates in several countries and different languages. He was quoted by Canada.com as saying "I'd have to say it is one of the most sophisticated we have seen. What makes it more dangerous is it seems to be staffed by professional software developers...They are writing this and maintaining it just like they would a piece of software you might buy."

Unlike conventional cyber banking frauds - where bank clients are steered to a bogus website masquerading as their bank's online pages - in this scam, the hacker uses the genuine bank website and is able to manipulate the user's account, steering payments into a hacker's account or cleaning out the entire bank funds altogether. It also can be used to steal credit card information and passwords.


The Silentbanker trojan waits for the user to login and pass authentication and silently acts as a third party in the transaction. Occasionally it may show its presence by adding a new function button to the website, but will most likely remain completely hidden.

All of the usual functions of the website, such as transferring of funds, bill payments and checking credit card balances, appear to be completely normal, giving the user no reason to suspect that the site has been compromised.

According to Symantec researcher Liam OMurchu, "It can then silently change the user-entered destination bank account details to the attacker's account details instead."

Fortunately updated security software, such as Symantec or McAfee who both have updates available to protect users from the Trojan.Silentbanker problem. Click one of the above links to see the technical details from either of these security software companies.
article:249028:15::0

Comments »
Share on
del.icio.us digg facebook newsvine reddit stumbleupon technorati
Today's top news Next in Technology
U.N. Adopts Gaza Resolution
Opinion: Hookers Won't Need Bailout Flynt Asks For
Internet car radio: World first, and a possible revenue cash cow
Buy an ad on DigitalJournal.com
Go to top ▲
Email:
Password:
Remember meForgot password?