Police warn on key-logging spam Trojan
'Swiss Army knife' of online fraud, says Hi-Tech Crime Unit
Police are warning about fake email invoices being used by cyber-criminals to steal online banking details and other information from unsuspecting internet users. Cyber-criminals are attempting to trick users by sending spam emails that look like invoices, the National Hi-Tech Crime Unit (NHTCU) has warned. The emails contain details of a fictitious order for web hosting or computer goods and thank the recipient for the order. The apparent cost that will be charged to the recipient's credit card is displayed, along with a link to a web address in order to view the 'order' in more detail. If the recipient visits the website, it appears merely as a site under construction. But an unprotected PC will then allow a trojan to download. The next time the customer uses their computer to access an online banking website, fraudsters can use the trojan to log key strokes and record secret passwords and Pins. The PC can also be hijacked remotely and turned into a zombie machine to send spam. The banking industry is working with the NHTCU to have these malicious websites shut down as quickly as possible. Detective Chief Superintendent Len Hynds, head of the NHTCU, said in a statement: "The NHTCU is continuing to work hard to bring the perpetrators of these elaborate scams to justice. "The criminals behind these attacks are constantly evolving their techniques and changing tactics to target a wider range of victims. "With this range of exploits being blended in one piece of code, it is not just about online banking. "There is a second keylogger and a program that allows the machine to act as a mail proxy that could be used by spammers. It is the Swiss Army knife of the cyber-criminal."
Reproduced from an article published by vnunet.com
© vnunet.com
The original article can be viewed here:
http://www.vnunet.com/news/1157314
Permalink Bookmark Digg this story
