Mobius Forum Archive

Trojan attacks bank...
 
Notifications
Clear all

Trojan attacks bank accounts

9 Posts
8 Users
0 Reactions
254 Views
(@mokat)
Posts: 140
Estimable Member
Topic starter
 

Dunno if anybody here does their banking online, but I saw this over at Tech Republic:

blogs.techrepublic.com.co...ws/?p=1792

{paste}
Anti-virus vendor SecureWorks has raised an alert on a variant of the Prg Trojan that pilfers commercial bank accounts by initiating wire transfers.

An excerpt from SC Magazine:

The latest attack is being orchestrated by a German group working in conjunction with UpLevel, a Russian malware-developing organization, according to Jackson. He said that the German group purchased the confidential information of thousands of victims of previous Prg attacks from UpLevel, which is also providing hosted servers and various other services for the unnamed group.

The detailed series of events that were used to perform the attacks throw light on the determination of phishers and hackers.

The attacks are targeted at individuals whose information was obtained from the attacks by previous variants of the Prg Trojan. Phishing e-mails are sent to these individuals, and clicking on the embedded links causes the installation of the new variant of the Prg Trojan on their system. When the individual visits a banking site, the Trojan initiates wire transfers to compromised bank accounts in the background. The money is shifted to other accounts to avoid detection. Over $200,000 has already been stolen in this manner.

The Trojan automates all the steps a user usually takes in banking transactions, essentially making them undetectable at the banks end.

Financial activities online are lucrative targets for malware attacks. Awareness is the key to safety here.
{end paste}

Kinda scary what cyber-criminals can do these days
:eek

 
(@darkwinguk)
Posts: 679
Honorable Member
 

Did that also advise you to send to all your contacts? The way it's written just screams "spam" at me. Maybe I'm cynical... And a little research tells me I am.

Interesting how the attack can be foiled by not being daft enough to fall for a phishing e-mail. You'd think by now people would know better.

Interestingly Symantec appears to have nothing on that particular Trojan - at least not under that name.

DW

 
(@silvershadow)
Posts: 1008
Noble Member
 

Quote:


clicking on the embedded links causes the installation of the new variant of the Prg Trojan


So what have we learned from this? If you think it's fishy, (or phishy maybe?) don't click it!

And it's not too hard to ascertain the fishy ones either - if you just hover over a link most e-mail programs and browsers will display somewhere where it goes. These things are usually obvious when they're fishy.

Not to mention other such things as firewalls to keep you safe...

Anyway, that's enough ranting out of me, I'm a technically minded elitist anyway =P

~SilverShadow.

 
(@shadow-hog_1722585725)
Posts: 4607
Famed Member
 

I'm sure this bank's customers are saying "so long and thanks for all the phish!"...

 
(@shigeru-akari)
Posts: 1055
Noble Member
 

It makes me a sad panda, how people can still be fooled by this stuff. I mean... like most things, bank folks don't ask for account admining via email... EVER. o.o

 
(@Anonymous)
Posts: 0
New Member Guest
 

well, im gonna buy an anti-virus now

 
(@chibibecca_1722585688)
Posts: 3291
Famed Member
 

you can get a good free antivirus off the internet, like AVG.

welcome to the forum, please don't double-post.

 
(@deckman92)
Posts: 1201
Noble Member
 

i think he's just a run-of-the-mill spamvertiser.

 
(@chibibecca_1722585688)
Posts: 3291
Famed Member
 

after checking his posts and seeing that he bumped up 2 year old topics in another very dead forum.. i guess that's possibly right. *was giving him the benifit of the doubt until proven elsewise*

 
Share: