contents

software
 
PandaLabs: Banker Trojans Evolving into More Dangerous Forms

Banker Trojans designed to steal financial information are evolving rapidly. One recent example, the StealAll.A Trojan, injects a DLL in the Internet browser to steal data users enter in online forms.

According to PandaLabs, 53.6 percent of the new malware samples that appeared in 2006 were Trojans. And 20 percent of all Trojans detected by Panda ActiveScan in 2006 were banker Trojans. This was in fact the most frequently detected category of Trojan.

The rapid evolution of banker Trojans is largely due to the use of additional security measures by financial institutions, such as the virtual keyboards now used to prevent traditional keyloggers recording users' keystrokes.

Cyber-crooks however have gone to great lengths to counter such security measures. Just a few months ago, PandaLabs detected Banbra.DCY, a banker Trojan designed to take video shots in order to see exactly which characters users enter on the virtual keyboard.

Another common technique uses Trojans designed for pharming. This involves tampering with the DNS (domain name system) used to direct users to web pages, redirecting them to spoof banking or financial pages designed to capture the data entered. Banker.CHG is a typical example of Trojan designed for pharming.

"Banker Trojans are currently one of the greatest threats on the Internet and attacks using this type of malicious code can have devastating effects on users' finances", explains Luis Corrons, technical director of PandaLabs, who adds: "These Trojans are created specifically so they can be installed and operate without attracting attention. For this reason users need proactive technologies to detect new threats by analyzing their behavior."

Panda Software has recently launched the beta version of its new online scanner: NanoScan. This powerful application detects all active malware hiding in critical areas of a computer in less than 60 seconds. The NanoScan beta version is available free.

NanoScan provides a 'second opinion' on computer security and complements any antivirus solution installed on a system. It can be used before making online transactions or accessing online banking services. Thanks to the Panda Software application users can make sure that there are no keylogger Trojans on their computers, or any other threats waiting to steal confidential data.



write your comments about the article :: 2007 Computing News :: home page