Security firm SecureWorks announced on Tuesday that the firm had uncovered a previously unknown Trojan horse and its associated data cache, both which showed the increasing sophistication among data thieves.
The program, which the company dubbed "Gozi," evaded discovery by security firms for almost a month, records the user names and passwords of online accounts, bypasses secure sockets layer (SSL) encryption, and uses a central server that also acts a point-of-sale to underground data thieves. The SecureWorks researcher found nearly 10,000 account credentials belonging to 5,200 victims, including government employees, on the server. Account credentials for more than 30 banks and credit unions were on the central server.
"SecureWorks had contacted several of the companies affected and is working through various other channels, including law enforcement, to notify the remaining affected parties," Don Jackson, a security researcher for SecureWorks, stated in his analysis of the Trojan horse.
No comments:
Post a Comment