Three-pronged Trojan Attack Threatens Security on the Internet
Glieder (Win32.Glieder.AK), Fantibag (Win32.Fantibag.A) and Mitglieder (Win32.Mitglieder.CT) are not names of a modern day version of The Three Musketeers. These are Trojans engineered for a hacker attack that will infect computers and open them for use in further attacks.
"Combating computer viruses is essentially a game of hide and seek," says Govind Rammurthy, CEO, MicroWorld Technologies, among the leading Security Solutions providers. "Hackers riding piggyback on viruses have only a short window of opportunity to maximize their gain before the viruses are detected, neutralized and logged into Virus Definition databases, 'vaccinating' the system against those strains.
Without continuing system vulnerability caused by virus infection there is little they can do to further their malicious ends like stealing personal information, credit card details and other sensitive and vital data. To achieve their ends they need to keep the system vulnerability going for more time. This co-ordinated Trojan threat is an attempt to the keep that 'backdoor' open, essentially buying time," he concludes.
Of the three, Glieder leads the initial charge. It sneaks past anti-virus protection to download and execute files from a long, hard-coded list of URLs and "plant" the infected machine with "hooks" for future use. On Windows 2000 and Windows XP machines, it attempts to stop and disable the Internet Connection Firewall and the Security Center service (introduced with Windows XP Service Pack 2). Then the Trojan accesses the URL list to download Fantibag. The way is now paved to launch the second stage of attack.
Sulabh, a tester with MicroWorld Technologies says of Fantibag, "Now Fantibag goes about attacking the networking feature of the infected system to prevent it from communicating with anti-virus firms and denying access to the Microsoft Windows Update site. It closes your escape route by making it impossible to download an anti-virus solution and any subsequent Windows security patch to your system. Effectively it helps Mitglieder (the third stage Trojan) open the 'backdoor' by shutting the other doors on you."
Mitglieder puts the system under complete control of the attacker by opening the 'backdoor' on a port using which the attacker can update the Trojan, to stay a step ahead of attempts to remove it, download and execute files, initiate an SMTP server to relay spam, execute files on the infected computer and download and execute files via an URL. "This is what makes it scary," say Aarti, Assistant Manager, QA, MicroWorld Technologies. "The fact that the system can now be used as a remote controlled 'soldier' (bot) in an army (botnet) of similarly compromised machines to launch criminally motivated attacks, causing harm to Internet users."
Botnets thus formed can among other things, use your machine to launch Distributed Denial of service attacks which overload servers, making them crash, to send out spam, spread new Malware, plant Keylogger to retrieve your personal information like identity, passwords, account numbers etc., install Spyware, manipulate online polls/games, abuse programs like Google AdSense to cheat advertisers of revenue, and install Advertisement Addons for financial gain as in fake websites advertising services that don't exist.
"Botnets can even encompass over 50,000 host machines. The potential for mischief is huge," reflects Govind Rammurthy. "Such a three-pronged Trojan attack where attackers change their virus code and release viruses quickly to bypass virus signature scanners, then disable network access to deny the user link-ups to anti-virus and Microsoft Windows Update site for protection has huge significance for virus-signature based protection. It is a sign of things to come," he says, remembering the scramble at MicroWorld labs to update their products to detect and remove the three Trojans.
Anti-virus updates for the three-pronged Trojan threat are available at MicroWorld Technologies site. Maybe the time for worrying about some pimply teenager turning out malicious code because they have nothing better to do on a nice sunny morning, is over. The world could be facing a determined organized crime syndicate who'll stop at nothing to get what they want - information precious to you.
MicroWorld Technologies is one of the leading solution providers for Information Technology, Content Security and Communications Software. MicroWorld has established itself as a leader in providing content security, anti-virus and corporate communications software solutions.
|
|
|
|
|
|
|
Internet/Network Security
Abstract Homogeneous symmetries and congestion control have garnered limited interest... Read More
Are They Watching You Online?
When surfing the Internet you probably take your anonymity for... Read More
HackAttack
P C. owners are constantly at risk from attacks by... Read More
How To Give Away Your Personal Information
Identity Theft and Your Personal Information Identity theft is... Read More
How Spyware Blaster Can Protect Your Computer From Harm
By browsing a web page, you could infect your computer... Read More
Detect Spyware Online
You can detect spyware online using free spyware cleaners and... Read More
Dont Miss Information Because of Misinformation
It has been said that with the wealth of information,... Read More
SCAMS ? Be Aware ? And Report When Necessary
The Internet is a vast International Network of people and... Read More
Dont Fall Victim to Internet Fraud-10 Tips for Safer Surfing
The Internet offers a global marketplace for consumers and businesses.... Read More
Click Here To Defeat Evil
Microsoft routinely releases new security updates, many of which are... Read More
Wireless Network Security
Working from home has its advantages, including no commute, a... Read More
The Bad Guys Are Phishing For Your Personal Information
Do you know what "phishing" is?No, it doesn't mean you... Read More
Is Adware - Spyware Putting Your Privacy at Risk
Do you sometimes notice your computer running slower. Is your... Read More
Dialing Up a Scam: Avoiding the Auto-Dialer Virus
For many, the daily walk to the mailbox evokes mixed... Read More
Parental Control - Dangers To Your Child Online & Internet Child Safety Tips
Did you know...? 1 in 5 children who use computer... Read More
Preventing Online Identity Theft
Identity theft is one of the most common criminal acts... Read More
Secrets On Security: A Gentle Introduction To Cryptography
Let us take the example of scrambling an egg. First,... Read More
Everything You Need To Know About Spyware and Malware
You are at your computer, checking out software on EBay.... Read More
Is Spyware Watching You?
Imagine my surprise when I received a phone call from... Read More
Phishing-Based Scams: A Couple of New Ones
Phishing in its "classic" variant is relatively well-known. Actually, 43.4... Read More
Firewall Protection - Does Your Firewall Do This?
The first thing people think about when defending their computers... Read More
Website Security - Creating a Bulletproof Site in 5 Easy Steps
When it comes to a secure website and passwords it... Read More
Phishing - A High Tech Identity Theft With A Low Tech Solution
Have you ever got an email asking you to confirm... Read More
How To Prevent Spyware Attacking Your Computer
Spyware is software or hardware installed on a computer without... Read More
If You Steal It, They May Come!
Business on the internet is getting down right shameless. This... Read More
Mail Forwarding - Why Would You Do It?
First of all we need to get some terms stated.... Read More
How To Avoid Hackers From Destroying Your Site?
Recently, my site and other internet accounts ( http://www.nabaza.com/sites.htm )... Read More
Top Five Spyware Fighting Tips
Spyware and adware are becoming major problems for online surfers... Read More
The Move to a New Anti-Virus Model
This is the second in a series of articles highlighting... Read More
Criminals are Fishing For Your Identity
What is Phishing? In a typical Phishing attack, a criminal... Read More
Burning Bridges is Bad, But Firewalls are Good
When you signed up for that ultra-fast DSL or Cable... Read More
Internet Scams: Dont be a Victim
As the number of people using the Internet as an... Read More
Don?t Become An Identity Fraud Statistic!
"You've just won a fabulous vacation or prize package! Now,... Read More
How to Manage Your Username and Password The Easy and Secure Way
Have been an Internet user for more than 9 years,... Read More
Message Board Security Problems
Security leaks can be a big problem for any site... Read More
8 Surefire Ways to Spot an EBAY Scam E-Mail and Protect Yourself from Identity Theft
Ebay is a great site and is used by many... Read More
Spyware Protection Software
Spyware protection software is the easiest way of removing spyware... Read More
Can I Guess Your Password?
We all know that it's dangerous to use the same... Read More
Be Alert! Others Can Catch Your Money Easily!
So called phishers try to catch the information about the... Read More
A Personal Experience with Identity Theft
Some months ago, before there was much publicity regarding phishing... Read More
Check Out That Privacy Policy
Before you enter your name, address or any other data... Read More
Internet Small Business and Fraud
Be careful of sites that promise to send you "instant... Read More
How Free Scripts Can Create Security Problems
With the Internet entering our lives in such an explosive... Read More
IPv6 - Next Step In IP Security
IPv6, IntroductionThe high rate at wich the internet continualy evolves... Read More
Information Security for E-businessmen: Just a Couple of Ideas
If you constantly deal with bank or electronic accounts, it... Read More
The 5 Critical Steps to Protecting Your Computer on the Internet
Spyware, viruses and worms... oh my!If you are connected to... Read More
Temporary Internet Files - the Good, the Bad, and the Ugly
A little bit of time invested into learning about internet... Read More
If You Sell Anything Online Your ePockets Are Being Picked
You and I are a lot alike. We are both... Read More
The Bad Guys Are Phishing For Your Personal Information
Do you know what "phishing" is?No, it doesn't mean you... Read More
Is The Internet Over Regulated
Today's Internet or World Wide Web is being over regulated.But,... Read More
Spyware Programs Are Out To Get You!
The average computer is packed with hidden software that can... Read More
Types Of Computer Infections
Computer infections can be broken up into 4 main categories... Read More
Internet Privacy
Over the past few years as the internet has become... Read More
Steganography ? The Art Of Deception & Concealment
The Message Must Get Through The year is 300A.D.,... Read More
Phishing, Fraudulent, and Malicious Websites
Whether we like it or not, we are all living... Read More
Dont Miss Information Because of Misinformation
It has been said that with the wealth of information,... Read More
Top Five Online Scams
The top five online scams on the Internet hit nearly... Read More
Online Cell Phone Scams and Spam
They're out there. Individuals trying to make a quick buck... Read More
Detect Spyware Online
You can detect spyware online using free spyware cleaners and... Read More
Phishing and Pharming: Dangerous Scams
As soon as almost all computer users already got used... Read More
Traditional Antivirus Programs Useless Against New Unidentified Viruses!
Every now and then you can read about a new... Read More
Computer Security
What is computer security? Computer security is the process of... Read More
Dont be a Dork ? Protect Yourself
There are folks out there who use their powers for... Read More
The Importance of Protecting Your PC from Viruses and Spam
Today the internet is a mine field of malicious code... Read More
From Spyware with Love!
It's late. You've been scouring the web for that perfect... Read More
Everything You Need To Know About Spyware and Malware
You are at your computer, checking out software on EBay.... Read More
Internet Security |