Trojan malware on the upswing for data theft
Wednesday, July 1, 2009
Security researchers from Trend Micro are warning that Trojan malware - data-stealing programs that come disguised as harmless files - have grown in use over the past year to 93 percent of all data-stealing malware.
The IT security vendor reported that Trojans' share of data-stealing malware grew to that figure in Q1 2009, up from 87 percent in 2008. In 2007, 52 percent of data-stealing malware were Trojans.
Cybercriminals use Trojans to steal proprietary information such as online banking credentials, credit card numbers, social security numbers and passwords from compromised networks and PCs.
"As a threat category, data-stealing malware is experiencing tremendous growth because it serves the needs of financially motivated criminals who leverage the internet for what it does best - provid[ing] valuable information," said Jamz Yaneza, threat research manager for Trend Micro.
Security researchers last week spotted spam emails exploiting the death of Michael Jackson to spread malicious links to files that appeared to be YouTube videos, but were actually Trojan downloaders.
Websense said last week that a file called Michael.Jackson.videos.scr located on a legitimate site hosted in Australia would download three malicious files when executed.
Another spam email spotted last week purporting to be a "critical update" for Microsoft Outlook and Outlook Express contained a link to download a Trojan called ZBot.
Related News:
Password security a tall order for many web users - 1.22.2010
A recently released study from tech researcher Imperva showed that the most popular password among users whose accounts were compromised in the recent RockYou data breach was as follows: 123456.
Facebook fixes "wrong friends list" mobile network security glitch - 1.22.2010
CNET reports that social media network Facebook has repaired a problem in the mobile version of its service that caused some mobile users to have full access to the friends lists of unassociated users.
Automated phishing scam hits bank customers - 1.14.2010
Phishing attacks do not target victims exclusively via email, experts say, pointing to a recent rash of automated phone calls that attempted to convince victims to give up sensitive banking information.
Scammers ride aftershocks of Haiti catastrophe - 1.14.2010
The Federal Bureau of Investigation has issued a warning to those who want to contribute to earthquake relief efforts in Haiti, saying that cyber criminals and other types of scam artists are trying to take advantage of an outpouring of humanitarian support.
Banking Trojans finding new vector with fake Outlook alerts - 1.11.2010
A spurious alert purporting to come from Microsoft Outlook has cropped up in recent weeks, according to a maker of email filtering software.
|
