Security experts are warning about a stealthy Windows virus that steals login details for online bank accounts. In the last month, the malicious program has racked up about 5,000 victims – most of whom are in Europe. The malicious program is a type of virus known as a rootkit and it tries to overwrite part of a computer’s hard drive called the Master Boot Record (MBR). Once installed the virus, dubbed Mebroot by Symantec, usually downloads other malicious programs, such as keyloggers, to do the work of stealing confidential information. Most of these associated programs lie in wait on a machine until its owner logs in to the online banking systems of one of more than 900 financial institutions.The Russian virus-writing group behind Mebroot is thought to have created the torpig family of viruses that are known to have been installed on more than 200,000 systems. This group specialises in stealing bank login information. Security firm iDefense said Mebroot was discovered in October but started to be used in a series of attacks in early December. Between 12 December and 7 January, iDefense detected more than 5,000 machines that had been infected with the program. As it installs through security holes in Microsoft Explorer, it’s just another reason to use Firefox or Opera…
Posts Tagged ‘Security’
Dangerous rootkit collecting data on rise
Posted by Yaser on January 13, 2008
Posted in Computers, Internet, Microsoft, Security | Tagged: firefox, keylogger, malicious, Master boot, MBR, opera, rootkit, russian, Security, stealth, virus, windows | Leave a Comment »
20% of world computers infected with rootkits
Posted by Yaser on December 14, 2007
Malware researchers at Prevx have highlighted what they are calling a ‘massive growth’ in the number of PCs harboring rootkit infections. More than 725,000 PCs were scanned using the Prevx CSI malware scanner over a two-month period. Of the around 291,000 users who scanned their PCs during October 2007, some form of spyware or malware was found on one in six. Significantly, although rootkits were detected on 15.6% of PCs during October 2007, that figure had risen to 22% by early December. Rootkits are often ‘dropped’ or buried by other infections. They then modify a PC’s operating system to hide themselves from both the user and any security products installed on the computer. By so doing rootkits can allow criminals to remotely monitor, record, modify, steal and transfer data from the victim’s PC. Read the rest of this entry »
Posted in Computers, Internet, Security | Tagged: botnet, computer, maleware, prevx, rootkits, Security | Leave a Comment »