Three-pronged Trojan Attack Threatens Security on the Internet
Glieder (Win32.Glieder.AK), Fantibag (Win32.Fantibag.A) and Mitglieder (Win32.Mitglieder.CT) are not names of a modern day version of The Three Musketeers. These are Trojans engineered for a hacker attack that will infect computers and open them for use in further attacks.
"Combating computer viruses is essentially a game of hide and seek," says Govind Rammurthy, CEO, MicroWorld Technologies, among the leading Security Solutions providers. "Hackers riding piggyback on viruses have only a short window of opportunity to maximize their gain before the viruses are detected, neutralized and logged into Virus Definition databases, 'vaccinating' the system against those strains.
Without continuing system vulnerability caused by virus infection there is little they can do to further their malicious ends like stealing personal information, credit card details and other sensitive and vital data. To achieve their ends they need to keep the system vulnerability going for more time. This co-ordinated Trojan threat is an attempt to the keep that 'backdoor' open, essentially buying time," he concludes.
Of the three, Glieder leads the initial charge. It sneaks past anti-virus protection to download and execute files from a long, hard-coded list of URLs and "plant" the infected machine with "hooks" for future use. On Windows 2000 and Windows XP machines, it attempts to stop and disable the Internet Connection Firewall and the Security Center service (introduced with Windows XP Service Pack 2). Then the Trojan accesses the URL list to download Fantibag. The way is now paved to launch the second stage of attack.
Sulabh, a tester with MicroWorld Technologies says of Fantibag, "Now Fantibag goes about attacking the networking feature of the infected system to prevent it from communicating with anti-virus firms and denying access to the Microsoft Windows Update site. It closes your escape route by making it impossible to download an anti-virus solution and any subsequent Windows security patch to your system. Effectively it helps Mitglieder (the third stage Trojan) open the 'backdoor' by shutting the other doors on you."
Mitglieder puts the system under complete control of the attacker by opening the 'backdoor' on a port using which the attacker can update the Trojan, to stay a step ahead of attempts to remove it, download and execute files, initiate an SMTP server to relay spam, execute files on the infected computer and download and execute files via an URL. "This is what makes it scary," say Aarti, Assistant Manager, QA, MicroWorld Technologies. "The fact that the system can now be used as a remote controlled 'soldier' (bot) in an army (botnet) of similarly compromised machines to launch criminally motivated attacks, causing harm to Internet users."
Botnets thus formed can among other things, use your machine to launch Distributed Denial of service attacks which overload servers, making them crash, to send out spam, spread new Malware, plant Keylogger to retrieve your personal information like identity, passwords, account numbers etc., install Spyware, manipulate online polls/games, abuse programs like Google AdSense to cheat advertisers of revenue, and install Advertisement Addons for financial gain as in fake websites advertising services that don't exist.
"Botnets can even encompass over 50,000 host machines. The potential for mischief is huge," reflects Govind Rammurthy. "Such a three-pronged Trojan attack where attackers change their virus code and release viruses quickly to bypass virus signature scanners, then disable network access to deny the user link-ups to anti-virus and Microsoft Windows Update site for protection has huge significance for virus-signature based protection. It is a sign of things to come," he says, remembering the scramble at MicroWorld labs to update their products to detect and remove the three Trojans.
Anti-virus updates for the three-pronged Trojan threat are available at MicroWorld Technologies site. Maybe the time for worrying about some pimply teenager turning out malicious code because they have nothing better to do on a nice sunny morning, is over. The world could be facing a determined organized crime syndicate who'll stop at nothing to get what they want - information precious to you.
MicroWorld Technologies is one of the leading solution providers for Information Technology, Content Security and Communications Software. MicroWorld has established itself as a leader in providing content security, anti-virus and corporate communications software solutions.
|
|
|
|
|
|
|
Parental Control - Dangers To Your Child Online & Internet Child Safety Tips
Did you know...? 1 in 5 children who use computer... Read More
Secrets On Security: A Gentle Introduction To Cryptography
Let us take the example of scrambling an egg. First,... Read More
Free Spyware Removal - Its Not As Easy As It Sounds
Nobody wants to pay to remove spyware. At the very... Read More
Protect Your Little Black Book
The movie Little Black Book features a young woman, Stacy,... Read More
Adware and Spyware: The Problems and Their Solutions
The Threat10 years ago you could probably have run no... Read More
The Top Twelve Threats No Computer User Should Ignore
The internet is undoubtedly a fantastic resource for families and... Read More
Is the Internet Insecure Because of You?
Long gone are the days that we could feel secure... Read More
New CipherSend Online Security Service Thwarts Email Address Theft And Soothes Password Fatigue
In 1997, I decided after 15 years as a practicing... Read More
What to Look for before You Purchase Spyware Software
Huge number of spyware software applications are available in the... Read More
Internet Scams: Dont be a Victim
As the number of people using the Internet as an... Read More
Detect Spyware Online
You can detect spyware online using free spyware cleaners and... Read More
Hacked: Who Else Is Using Your Computer?
A friend called me one day and asked if I... Read More
Is My PC Vulnerable on the Internet?
No longer are viruses the only threat on the internet.... Read More
Identity Theft - Dont Blame The Internet
Identity theft ? also known as ID theft, identity fraud... Read More
Behavior to Stay Safer Online
1. Importance of a Virus Scanner: A Antivirus program can... Read More
Firewall Protection - Does Your Firewall Do This?
The first thing people think about when defending their computers... Read More
Steganography ? The Art Of Deception & Concealment
The Message Must Get Through The year is 300A.D.,... Read More
Phishing: A Scary Way of Life
The Federal Bureau of Investigation has identified "phishing" as the... Read More
Hacking Threats and Protective Security
The 1998 Data Protection Act was not an extension to,... Read More
Phishing-Based Scams: A Couple of New Ones
Phishing in its "classic" variant is relatively well-known. Actually, 43.4... Read More
5 Tips For An Unbreakable Password
Despite the current wave of identity theft and corporate security... Read More
Mall Protection
The Loss Prevention Manager should be receptive to the needs... Read More
Wells Fargo Report Phishing Scam
First off I should explain what phishing is. Phishing is... Read More
If You Sell Anything Online Your ePockets Are Being Picked
You and I are a lot alike. We are both... Read More
How to Protect Your Child from the Internet
When the Internet first came about, it was realized it... Read More
A Personal Experience with Identity Theft
Some months ago, before there was much publicity regarding phishing... Read More
Phishing - Learn To Identify It
Phishing: (fish'ing) (n.)This is when someone sends you an email... Read More
Phishing - Identity Theft & Credit Card Fraud
What is Phishing? Phishing is a relatively newly coined term... Read More
Website Security - Creating a Bulletproof Site in 5 Easy Steps
When it comes to a secure website and passwords it... Read More
Personal Firewalls for Home Users
What is a Firewall?The term "firewall" illustrates a system that... Read More
How To Cover Your Tracks On The Internet
Every single time you access a website, you leave tracks.... Read More
Wireless Network Security
Working from home has its advantages, including no commute, a... Read More
Check Out That Privacy Policy
Before you enter your name, address or any other data... Read More
8 Surefire Ways to Spot an EBAY Scam E-Mail and Protect Yourself from Identity Theft
Ebay is a great site and is used by many... Read More
An Open Door To Your Home Wireless Internet Network Security?
This is not some new fangled techno-speak, it is a... Read More
Anti-Spyware Protection: Behind How-To Tips
There is no doubt that "how-to articles" have become a... Read More
How to Protect Yourself Against Online Criminals
Credit card fraud is a growing problem for online businesses... Read More
Is Spyware Watching You?
Imagine my surprise when I received a phone call from... Read More
Social Engineering: You Have Been A Victim
Monday morning, 6am; the electric rooster is telling you it's... Read More
Computer Viruses - How to Remove a Computer Virus from Your Computer
Computer viruses infect millions of computers every day. Viruses can... Read More
DOS Attacks: Instigation and Mitigation
During the release of a new software product specialized to... Read More
Backup and Save your business!
There you are busily typing away on your PC or... Read More
Computer Viruses and Other Nasties: How to Protect Your Computer from These Invaders
Can you protect your computer from all possible viruses and... Read More
Make Money Online - Defend Against The Latest Scam
First, let's do a little recap'. As I stated in... Read More
Virus and Adware - Fix them Both!
We all get the odd virus now and then, but... Read More
Hacked: Who Else Is Using Your Computer?
A friend called me one day and asked if I... Read More
5 Simple Steps to Protect your Digital Downloads
A couple of days ago, I was searching for a... Read More
Personal Firewalls - Secure Your Computer
There has not been a time in the history of... Read More
Is Your Email Private? Part 1 of 3
In a word, no - an email message has always... Read More
Phishing - Identity Theft & Credit Card Fraud
What is Phishing? Phishing is a relatively newly coined term... Read More
Make Money Online - Latest Scam Disclosed
Before we start, I want to make it clear that... Read More
I Spy...Something Terribly Wrong (In Your Computer)
This really chapped my lips...I recently bought a new computer.... Read More
Clown Internet Scam - An Internet Scam is Currently Targeting Clowns and Other Entertainers
I am the victim of an internet scam. It is... Read More
Eliminate Adware and Spyware
Everyone should eliminate spyware and adware from your hard drive... Read More
Phishing - Learn To Identify It
Phishing: (fish'ing) (n.)This is when someone sends you an email... Read More
Its Time to Sing the Encryption Song - Again!
Yes, I'm wearing my encryption hat again. Why you may... Read More
Why Corporations Need to Worry About Phishing
Phishing is a relatively new form of online fraud that... Read More
Email Hoaxes, Urban Legends, Scams, Spams, And Other CyberJunk
The trash folder in my main inbox hit 4000 today.... Read More
Money Mule Email Scam Hits U.S.
Imagine this ? you open up your email box and... Read More
Watch Out For That Scam
The IFCC (Internet Fraud Complaint Center) received over 200,000 complaint... Read More
Is Your Music Player Spying On You?
In today's times spyware is a very serious issue and... Read More
Wireless Network Security
Working from home has its advantages, including no commute, a... Read More
Are They Watching You Online?
When surfing the Internet you probably take your anonymity for... Read More
Dont Get Hacked - A Guide to Protecting Your Business from Thieves
You've seen it in the news - 40 million credit... Read More
A New Era of Computer Security
Computer security for most can be described in 2 words,... Read More
Dont Miss Information Because of Misinformation
It has been said that with the wealth of information,... Read More
Internet Security |