More On the URLZone Online Banking Trojan

New Trojan Evades Banks' Anti-Fraud Systems - DarkReading

New Trojan Evades Banks' Anti-Fraud Systems

'URLZone' calculates just how much money to steal from a victim's account without raising suspicion

Sep 30, 2009 | 04:08 PM

By Kelly Jackson Higgins

DarkReading



A next-generation Trojan recently discovered pilfering online bank accounts around the world kicks it up a notch by avoiding any behavior that would trigger a fraud alert and forging the victim's bank statement to cover its tracks.



The so-called URLZone Trojan doesn't just dupe users into giving up their online banking credentials (passwords) like most banking Trojans do: instead, it calls back to its command and control server to specific instructions on exactly how much to steal from the victim's bank account without raising any suspicion, to which money mule account to send it the money, and forges the victim's on-screen bank statements so the victim and the bank don't see the unauthorized transaction.



Continue Dark Reading

URLZone, Conficker, Clampi, Zeus, HomeATM, Online Banking, Bank Trojan, Userename, Password, Trojan, Next Generation Trojan,

Related articles by Zemanta

• Garlik's UK Cybercrime Report 2009 Released (pindebit.blogspot.com)


• Online thieves step up bank raids (news.bbc.co.uk)


• What Is Conficker Waiting For? (pindebit.blogspot.com)


• Avivah Litan: Nothing that Goes Through the Browser Can Be Relied Upon! (pindebit.blogspot.com)


• Online Banking Trojans Infesting the Web (pindebit.blogspot.com)


• Consumers Fearful About Online Banking Risks (pindebit.blogspot.com)


• The Password is...Two Factor Authentication (pindebit.blogspot.com)


• Game Over! Hackers Win! (pindebit.blogspot.com)