Keylogging spyware seems to be a growing threat. Since it can sit unnoticed on a PC, users are unaware they are providing their login and passwords until it is too late.
Internet Explorer is the weak link in this case and making sure it is patched and/or a pop-up blocker is in place should protect most users. In the long term, we may need to encourage users to switch off IE, though that could be a long, tough slog. There are great alternative browsers but they would need to be installed (and, in some cases, purchased) so it is pretty tough to get people to switch from their free, pre-installed IE.
Here are the specifics that are only hinted at in the article: http://isc.sans.org/presentations/banking_malware.pdf
No comments:
Post a Comment