- Microsoft Windows chief decries standards grandstanding
- The 5 best, and 5 worst, features of Google Chrome OS
- Federal government using PS3 to crack pedophile passwords
- 10G Ethernet cheat sheet
- Top 10 free Windows tools for IT pros, at a glance
Security researchers warned Tuesday of a new security threat making the 'Net rounds: A file that appears to spread through pop-up ads and capture personal data.
The Trojan horse file poses as an image file named "img1big.gif" but is actually an executable that installs a malicious add-on to Microsoft's Internet Explorer browser. The add-on, known as a BHO, or browser helper object, then monitors for and records outbound data to the Web sites of several dozen financial institutions, according to an analysis posted on the SANS Institute's Internet Storm Center Web site.
Targeted Web sites include those operated by Citibank, Canadian Imperial Bank of Commerce (CIBC) and Deutsche Bank, according to the analysis.
"I believe that this particular type of malware represents a huge threat to the online financial industry," researcher Tom Liston wrote in the report. "As the proliferation of ad/spyware shows, installing executable software on a user's machines is far too easy."
The Trojan came to the Internet Storm Center's attention when a user found the file on a machine at his company and sent it in for analysis.
The Internet Storm center recommends a tool called BHODemon, which lists all BHOs installed on a system and allows the user to disable malicious ones. The free program is available here.
Rss FeedRss Feed
The Leader in Network Knowledge
Comment