Tag Archives: virus

New OddJob banking Trojan keeps users logged in while draining accounts

This is bad news, if you happen to get infected with this one:

A new banking Trojan seizes browser session ID tokens to keep users logged into their accounts long after they think they’ve logged off. The malware sends data to remote servers in real time, enabling cybercriminals to stealthily hijack a browsing session and gives them plenty of time to funnel money out of accounts.

Called OddJob, it has been traced to cybercriminals in Eastern Europe and has been detected in attacks on customers in the United States, Poland and Denmark. Researchers at security vendor Trusteer Inc. and law enforcement investigators have been monitoring the Trojan for months, said Amit Klein, Trusteer’s chief technology officer. In an interview with SearchSecurity.com, Klein said the Trojan was detected as part of a fraud investigation initiated by a bank. So far investigators have detected fraud connected to OddJob at more than three dozen banks, Klein said.

via New OddJob banking Trojan keeps users logged in while draining accounts.

‘Here You Have’ Worm Floods E-Mail Inboxes

These attacks still work, because people still click the links or open the attachments and lack the appropriate counter-measures.

Dubbed “Here you have” because of its e-mail subject line, the worm struck organizations such as NASA and the Walt Disney Co. In some ways, the worm is a throwback to attacks such as the Anna Kournikova virus, which security researchers at Symantec noted actually had the same subject line when it appeared in 2001.

“This used to be a massive problem when e-mail worms were at their peak, and this re-emergence shows that you can never assume old tried and true methods won’t be used again,” said Bradley Anstis, vice president of technology strategy at M86 Security.

The body of the e-mail sometimes contained the message “This is The Document I told you about, you can find it Here,” followed by a malicious link that appears to be a PDF document but is actually a .SCR file. The e-mail then instructs the recipient to “please check it and reply as soon as possible.” Other versions of the worm have the subject “Just For you” and “This is The Free Dowload [sic] Sex Movies,you can find it Here” in the body.

via ‘Here You Have’ Worm Floods E-Mail Inboxes – Security from eWeek.

McAfee: New computer virus threats reach all-time high

That’s a lotta malware!  Interesting that the Macs are now in the hackers’ crosshairs; no mention if those will target the FreeBSD/Linux/UNIX world at large, or if it is specifically Mac-oriented.

New data released by security vendor McAfee Inc. shows that the amount of malware in the wild has never been higher, and while a large portion of it is being thwarted successfully, Mac users may face an increased risk.

In its McAfee Threats Report: Second Quarter 2010, McAfee Inc. notes that the first half of 2010 has been McAfee’s most active six-month period for malware protection updates, and in this past quarter alone, malware in the wild reached its highest levels ever, with 10 million new pieces of malware discovered, up from 1 million in Q1.

Attackers’ desire for money and data are the two biggest reasons for this increase, according to Dave Marcus, security research and communications manager at Santa Clara, Calif.-based McAfee.

“Even though there’s more malware than ever before, we’re actually identifying more malware than ever before, so it’s a way of saying that we’re keeping up with the bad guys,” Marcus said.

Portable storage devices were the most popular targets for malware and related new computer virus threats. Everything from traditional storage keys to digital picture frames and cameras, Marcus said, is now being affected by malware.

The report also offered a warning for Mac users. Until now, Mac users have had little malware to deal with. But a new Trojan mentioned in the report specifically targeting Macs, HellRTS, may be a harbinger of what’s to come.

via McAfee: New computer virus threats reach all-time high.