Trustdefender Finds Gozi Trojan In New Version
The latest report by TrustDefender Labs frighteningly finds that Gozi Trojan in a fresh variant is completely undetectable to anti-malware software. Lately, the company has again analyzed Gozi that has been representing deceitful assaults ever since 2007.
Previously, Gozi managed to modify database code alternatively server so as to gather secret and sensitive details from infected home PCs. Thereafter it used the stolen details for compromising accounts. In the majority of instances, Gozi proliferated via exploits in the Internet Explorer Web-browser. The Trojan even managed in harming top organizations' accounts, including retail companies, healthcare and government agencies. Apparently, Gozi utilizes state-of-the-art Trojan code.
In the meantime, it's somewhat unclear as to whatever the new Gozi variant may do with its victim's sensitive information or bank account details stored on his domestic PC.
Albeit according to the researchers, the aforementioned characteristics can still be functional with respect to this fresh edition, Gozi displays more and more refinement in injecting HTML, should this Trojan be weighed against other PC Trojans.
Moreover, the criminals behind Gozi have been consistently and effectively eluding signature definitions in such a manner that no one has managed to know the PC Trojan's ultimate evolution. This emphasizes the level of risk associated with Gozi and its attacks' effects on individuals, business organizations and financial institutions, while remaining predominantly unnoticeable to AV programs.
Remarking about Trojan viruses that target PCs, Andreas Baumhof, Chief Technology Officer of TrustDefender says that more and more trojans are utilizing HTTPS and SSL for concealing their existence. Gozi, in addition, uses client-side logic for evading dual-factor validation just like other trojans such as Carberp, SpyEye and Zeus, Baumhof further says. Bankinfosecurity.com published this on November 8, 2010.
Remarks 'SecureWorks' another security company that just one attack by one Trojan version hijacks over 5,200 personal computers along with 10,000 user accounts when computer operators visit hundreds of websites. Pc1news.com published this on November 10, 2010.
In the end, security researchers warn that Trojan Gozi is especially perilous. Consequently, they recommend that users should be very certain as well as careful while handling sensitive data online.
Related article: TRUSTe Certified Websites May Still Contain Malware
» SPAMfighter News - 17-11-2010