New Trojan Evades Banks’ Anti-Fraud Systems

Thursday, October 1st, 2009 | Filed under Cyberthreats | Posted by

“A next-generation Trojan recently discovered pilfering online bank accounts around the world kicks it up a notch by avoiding any behavior that would trigger a fraud alert and forging the victim’s bank statement to cover its tracks.

The so-called URLZone Trojan doesn’t just dupe users into giving up their online banking credentials like most banking Trojans do: Instead, it calls back to its command and control server for specific instructions on exactly how much to steal from the victim’s bank account without raising any suspicion, and to which money mule account to send it the money. Then it forges the victim’s on-screen bank statements so the person and bank don’t see the unauthorized transaction. “

(Source: New Trojan Evades Banks’ Anti-Fraud Systems – DarkReading)

You must be logged in to post a comment Login