Webroot Detects Fresh Banker Trojan
Researchers from security company Webroot report that Trojan-Ransom-Krotten a fresh banker Trojan is circulating online with scamming tactics that are stunning and hitherto unknown.
Outlines the security company that when Trojan-Ransom-Krotten infects a computer it first disables the system's functioning and then asks for a ransom. The ransom demanded is a credit in Kyivstar's name the Ukrainian provider of cell-phone service. This credit, the victim is required towards depositing into the account of the malware purveyor. In other words, the victim ends up paying the hacker's mobile-phone bill.
Aside these damages, Trojan-Ransom-Krotten also stops the system's OS from functioning, using several different methods. Further, it alters registry keys, which append childish and irrelevant text to the title bar of IE as well as to other places like the folders and desktop.
Meanwhile, with payment of the ransom, the malware developer is simply emboldened to carry on with his crime extravaganza. Moreover, despite a victim fulfilling the ransom payment, it cannot be said for sure that the malware purveyor will actually succeed in undoing the damage. Consequently, there's considerable annoyance caused due to the insipid Trojan, the researchers observe.
Says Webroot that there's a growing variation of banking trojans that are increasing manifold, a contention that other security companies also support.
Recently when PandaLabs released its annual report for 2009, it noted that banking trojans continued to be cyber-criminals' most preferred devices for capturing confidential data of end-users. It also noted that albeit banking trojans commonly employed the same tactics for stealing data; during 2009, the company had witnessed some especially sophisticated banker trojans like SilentBanker.D.
Further Sunbelt, in June 2010, detected a banking Trojan namely Trojan-Spy.Win32.Zbot.gen that's Zbot in a new incarnation. This Trojan, which stole passwords as well as log-in details necessary for accessing banking websites, ranked No.2 on the company's Top Ten Malware List published during the 1st week of July 2010, having climbed from the fifth position during May 2010.
Moreover, McAfee another security company had guessed in advance that banker trojans would grow more cunning during 2010, something that's already turning out true with Trojan-Ransom-Krotten coming into the picture.
Related article: Webroot Detects Malware in Presidential Campaign Videos
» SPAMfighter News - 21-07-2010