Looks like a new Trojan threat is hitting the news - no longer relying on users mistyping the URL of their bank, yet more selective than just any old keystroke logger.
Vancouver Sun coverage.
Symantec report
McAfee report
There's mention of various specific websites and IP addresses which the attack uses as a destination for the harvested data. Does anyone add firewall rules as a matter of course to block any such outbound traffic as threats such as this one are identified?
Vancouver Sun coverage.
Symantec report
McAfee report
There's mention of various specific websites and IP addresses which the attack uses as a destination for the harvested data. Does anyone add firewall rules as a matter of course to block any such outbound traffic as threats such as this one are identified?
