Trojan dines out on social engineering Down Under...
By Steven Deare
Published: 20 February 2007 08:55 GMT
Hackers may have captured the login details of around 2,500 banking customers by circulating a Trojan email claiming Australia's Prime Minister has suffered a heart attack, according to a security company.
Entitled "John Howard, the current Prime Minister of Australia has survived a heart attack", the email claims Howard suffered the heart attack while staying at his official residence in Sydney and is fighting for his life in hospital.
The email then provides a link purporting to be an online news report. Users that click the link however are directed to a standard "404 error" page which downloads a Trojan to their computer.
Joel Camissar, Websense country manager for Australia and New Zealand, said the Trojan monitored infected users' internet activity. This included logging keystrokes, he said - which could include banking login details.
Websense, which has been tracking the scam, has identified one of the servers used in the hacking attempts and is recording compromised IP addresses, as well as other data stored by the server, according to Camissar.
He said 2,500 users around the world have been infected by the Trojan, with around 30 per cent - or 750 people - from Australia. Customers of banks across Europe and the US may have had their passwords captured, said Camissar, adding that customers of Australia's Commonwealth and Westpac banks may specifically have had their account details captured.
Both banks have denied the Trojan has infected their systems. A spokesperson for Westpac said its systems have not been compromised and the bank is unaware of any fraud losses as a result. While a Commonwealth Bank spokesperson said its website has not been infected by the Trojan.
However, as Camissar explained, the website is not the issue: "The Commonwealth Bank website hasn't been compromised but the Trojan horse monitors user sites visited and sends back the [bank site] username and password to the server computer."
Websense is working with law enforcement authorities to find the scammers, said Camissar.
Steven Deare writes for ZDNet Australia
The opportunity has come about due to new projects coming live in the Investment Banking Industry in central London where you will have the ...
Senior Oracle DBA - Team Lead (Oracle 10g, 11g, Data guard, RMAN) Expanding e-commerce company based in the heart of London are seeking a senior DBA ...
Our financial based client is based in the heart of Leeds and going through an expansion. The client list is predominantly blue-chip and includes ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business
Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business