Tuesday, October 06, 2009

No Free Checking with This Banking Trojan

A new Trojan hitting banking sites, as if this were really something new, has been making the rounds. So, what's new about the new URLzone Trojan?

Unlike other common banking Trojans, like Zeus and Clampi, which just transfer funds from a victim's account to those of criminals, URLzone can block anti-fraud detection systems. It can even be set to not drain an account to a zero balance, flying under the radar of other detection systems triggered by empty bank accounts.

The Trojan is allegedly being operated by a Ukraine-based gang, according to security company Finjan.

Other sophisticated ways the Trojan evades detection is to only hit accounts at random and then only a limited number of times, again throwing off fraud detection systems, which generally look for suspicious patterns of withdrawals.


Post a Comment

<< Home