设为主页 | 加入收藏 | 繁體中文

Researcher uncovers data thief's cache

  security firm secureworks announced on tuesday that the firm had uncovered a previously unknown trojan horse and its associated data cache, both which showed the increasing sophistication among data thieves.
  the program, which the company dubbed "gozi," evaded discovery by security firms for almost a month, records the user names and passwords of online accounts, bypasses secure sockets layer (ssl) encryption, and uses a central server that also acts a point-of-sale to underground data thieves. the secureworks researcher found nearly 10,000 account credentials belonging to 5,200 victims, including government employees, on the server. account credentials for more than 30 banks and credit unions were on the central server.
  "secureworks had contacted several of the companies affected and is working through various other channels, including law enforcement, to notify the remaining affected parties," don jackson, a security researcher for secureworks, stated in his analysis of the trojan horse.
  the server especially underscores the increasing sophistication of data thieves, jackson said. the software allowed customers to log in and buy certain search results using webmoney, a russian payment solution. prices varied: a search returning three passwords for a pint-sized retailer came in at about 100 wmz, equivalent to us $100, while ten passwords for an international bank cost 2,500 wmz, the report stated.
  malicious code has increasingly become focused on crime and data theft. bot masters have started using their networks of compromised pcs to send out stock spam, accounting for a third of all spam since the end of 2006. the bot nets have also been used to spread trojan horses, such as the storm worm, using a large number of variants in an attempt to defeat antivirus software.
  the latest trojan horse, gozi, escaped detection since at least december 13, according to secureworks.
 


    文章作者: 福州军威计算机技术有限公司
    军威网络是福州最专业的电脑维修公司,专业承接福州电脑维修、上门维修、IT外包、企业电脑包年维护、局域网网络布线、网吧承包等相关维修服务。
    版权声明:原创作品,允许转载,转载时请务必以超链接形式标明文章原始出处 、作者信息和声明。否则将追究法律责任。

TAG:
评论加载中...
内容:
评论者: 验证码: