Trojan Steals Your Banking Info

[John McKenna]

Never... and I mean NEVER click on a file (to open it) in your email. Even if it comes from a friend (your friends computer can be hijacked and silently used by a program to send out mail without them even knowing it... it happens all the time).

Here is an example... I just got this in my email today and did not open it. I went on the internet to see if it was bogus and is was. See below.

Quote:

A new UPS trojan variant is being detected called Mal/Zbot-G by Sophos and VirTool:Win32/Obfuscator.CT by Microsoft.


MX Lab was the first to send and analyse the file by Total Virus. Only 2 of the 36 AV engines at Virus Total did detect the trojan at the time of writing. So be aware that this email contains malware so don’t open the attachment.


The senders email addres is: United Postal Service <tracking@ups.com>.
The subject is: Delivery problems
The content of the body:

Hello!
Sorry, we were not able to deliver postal package you sent on December the 25th in time because the recipient’s address is not correct. Please print out the invoice copy attached and collect the package at our office.
Your UPS Support Team

The file attached is names UPSInv.zip and the ZIP archive contains UPSInv.exe.


Please note that the senders email address, the subject, body and attached file names can change.


This is the Trojan-Spy.Zbot.YETH, which is a rootkit trojan which steals online banking information and downloads other malware as well. The origin is possibly the Russian Federation.

http://blog.mxlab.eu/2009/01/11/new-...very_problems/

[Bob Elliott]

You would never get that kind of warning in an email.
Never clicking on files in email would ruin your business though.

I would just suggest using common sense when something looks suspicious like you did.

[John McKenna]

Quote:

Originally Posted by belliott

You would never get that kind of warning in an email.
Never clicking on files in email would ruin your business though.

I would just suggest using common sense when something looks suspicious like you did.

Errr.... Trojans do not give warnings. That is the point. The warning in the article is
explaining how the trojan works. Obviously, the sender is not going to warn you in
advance. Not all anti-virus programs will catch 100% of the bugs that come through
your email.

Unless someone tells me in advance they are sending me an attachment, I will not
open it.

[Bob Elliott]

I do not know about you but I get lots of them in PDF and Excel just on commercial inspection stuff alone.

[John McKenna]

How to avoid Trojans in your email...

Computer viruses and Trojans can download themselves onto your computer and quickly wreak havoc while there are many other issues with emails like email archiving which makes Trojans just that much more of a hassle. Some will completely shut down your computer, while others hide undetected and steal your personal and financial information. Many of these programs come through email, and there are specific steps you can take to protect yourself from them. By following these do's and don’ts, you can protect yourself from these malicious programs.

Don'ts

Don't open an attachment if you do not recognize the sender. Someone who is unknown to you has no reason to send you an attachment. If it were a legitimate attachment, you would likely know the sender.

Don't open attachments that you do not expect to receive. Alert your friends and family that all attachments will be deleted unless you know it is coming. Some email viruses and Trojans will attach themselves to the address book on the infected computer and automatically email everyone in the group. This means your best friend that you hear from every day could inadvertently send you a virus.

Don't download anything unless you have a current antivirus program installed on your computer.

Do's

Do delete immediately an email with an attachment from someone you do not recognize.
Do not even open the email if it is from an unrecognized source, as the virus could automatically open as well.
Do install antivirus programs on your computer, and make sure they are updated. These links will show you reviews of some of the more popular antivirus programs:

AntiVirus Software Product Comparisons
PC Mag AntiVirus Program Reviews
Consumer Search AntiVirus Reviews
AntiVirus Software
Free AntiVirus Programs

Do choose an anti-virus program that scans email attachments automatically.
Do tell others when you are sending an attachment so that they do not delete it in an effort to protect their computers.
Do choose an email program that has a built-in spam filter.
Do download any security patches and fixes available for your computer email program.
Do make yourself aware of any viruses currently being spread. These sites list the current viruses and Trojans that you should watch for:

McAfee
Threat Explorer
Virus Radar
Current Virus Threats

Do enable a firewall to protect your PC.
Do install antispyware software on your computer to work in conjunction with your antivirus program.
Do enable automatic updates on your antivirus and antispyware programs.
Do read more about protecting your computer from viruses, Trojans, and other malicious programs in these links:

9 Ways to Protect Your Computer
How to Avoid Email Threats
How to Protect Your Computer from Viruses
Protecting Your Computer from Unwelcome Intruders
Symantec - AntiVirus, Anti-Spyware


http://www.mimosasystems.com/article...our-email.html

[Jeffrey R. Pope]

That's a pretty old virus John. Are you still using Windows 98?

Keep your AV software updated and you will have little to worry about. . .

[jhugenroth]

Quote:

Originally Posted by jpope

That's a pretty old virus John. Are you still using Windows 98?

Keep your AV software updated and you will have little to worry about. . .

I was thinking more like a Commodore 64

[John McKenna]

Quote:

Originally Posted by jpope

That's a pretty old virus John. Are you still using Windows 98?

Keep your AV software updated and you will have little to worry about. . .

I use windows XP and feel it might help new users to the internet to be aware of the huge threat that is online. I recommend a little more than a casual approach.

Security report finds rise in banking Trojans, adware, fewer viruses

PandaLabs, the malware research arm of Panda Security, issued its 2009 annual report Tuesday, outlining the continued rise of more sophisticated forms of malware, including banking Trojans targeting account credentials that have far outpaced known viruses in the wild.

The total number of individual malware samples in Panda's database hit the 40 million mark in 2009. Panda said its research laboratory receives about 55,000 daily samples. Panda researcher Sean-Paul Correll summed up 2009 by calling it the most productive year for malware writers. There were about 25 million new malware strains in 2009 compared to a combined total of 15 million in Panda Security's 20-year history, Correll said in a blog entry announcing the annual report.

http://searchsecurity.techtarget.com...378277,00.html

[Bob Elliott]

Apple is not safe either.
The Manager at the Office Max just told me last night that he now carries 3 anti-virus programs for Mac.

[John McKenna]

Quote:

Originally Posted by belliott

Apple is not safe either.
The Manager at the Office Max just told me last night that he now carries 3 anti-virus programs for Mac.

Those who really understand the threat level that is out there do not take anything for granted.