Printer Friendly
The Free Library
5,675,364 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Hybrid SSL/keylogger malware surfaces.


Tier-3 have announced that a highly dangerous hybridised version of the Russian Gozi virus has surfaced that not only features an integrally-coded keylogger, but has the ability to steal data from an SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data.  stream. Sunday newswire reports suggest that the keylogger feature is only triggered when an infected in·fect  
tr.v. in·fect·ed, in·fect·ing, in·fects
1. To contaminate with a pathogenic microorganism or agent.

2. To communicate a pathogen or disease to.

3. To invade and produce infection in.  PC visits an e-banking Web site.

The virus variant was discovered by Don Jackson, a researcher with SecureWorks, who discovered the original Gozi virus in January.

Jackson is quoted as saying that this new variant has two new features: a packing utility that hides the virus code and a new keylogging facility.

Geoff Sweeney, co-founder and CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey.  of behavioural Adj. 1. behavioural - of or relating to behavior; "behavioral sciences"
behavioral  analysis software company Tier-3, described the new features as a dangerous new step in virus coding. "It is bad enough that this new version of Gozi can encrypt See encryption.  and rotate its program code to by-pass conventional signature detection, but the fact it can switch a keylogging function on and off when the infected PC reaches an e-banking Web page makes it almost undetectable using conventional IT security technology," he said. "My understanding of this new version is that behavioural analysis technology is the only way of preventing an infected PC user's e- banking data from being logged and compromised," he added.

www.tier-3
COPYRIGHT 2007 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2007, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Title Annotation:Security News and Products
Publication:Database and Network Journal
Date:Jun 1, 2007
Words:210
Previous Article:Be wary of Microsoft Office attachments.(Security News and Products)
Next Article:Consumer confidence in the Internet is growing.(Security News and Products)
Topics:



Related Articles
Bone death from bisphosphonates covered in new litigation packet.(The Exchange)
Baylor students are winners in trial advocacy competition.(The Exchange)
Materiality from a different point of view.(financial reporting)
Soul-searching over U.S. competitiveness: much attention and hand-wringing have come over U.S. capital markets' perceived loss of stature. Committees...
Banking gets greener: not that long ago, banks were minor actors on the climate-change stage. Now, they are stepping up with major commitments and...
For this CFO, energy is King: deeply involved in the oil and gas market, this year's recipient of FEI Canada's CFO of the Year Award, Marvin Romanow,...
CFO skillsets changing ... again: with CFO turnover still near record levels, Financial Executives Research Foundation (FERF) asked some in the...
Adaptive Planning.(BPM SOLUTIONS)
Just in: CFRI speakers.(fei news)
Conference schedule.(fei news)(Calendar)

Terms of use | Copyright © 2009 Farlex, Inc. | Feedback | For webmasters | Submit articles