22 October 2017
visit www.response.ncr.com

Security experts warn of Trojan.Silentbanker

15 January 2008  |  11015 views  |  0 biometric  eye

Experts at security firm Symantec are warning of a new trojan program that circumvents two-factor authentication systems and intercepts account information before it is encrypted.

In a company blog Symantec researcher Liam O'Murchu warns that Trojan.Silentbanker targets over 400 banks across the world and is able to perform man-in-the-middle attacks on valid transactions.

The Trojan can also intercept transactions that require two factor authentication. It can then change the user-entered bank account details to the attacker's account details instead.

"The Trojan ensures that the user does not notice this change by presenting the user with the details they expect to see, while all the time sending the bank the attacker's details instead," says O'Murchu in his blog. "Since the user doesn't notice anything wrong with the transaction, they will enter the second authentication password, in effect handing over their money to the attackers."

The program intercepts all of this traffic before it is encrypted, says Symantec, so even if the transaction takes place over SSL the attack is still valid.

Furthermore, when instructed, the Trojan can redirect users to an attacker-controlled server instead of the real bank in order to perform a man-in-the-middle attack. O'Murchu says currently there is one bank targeted this way, which isn't named.

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Macs target for phishing trojan

Macs target for phishing trojan

02 November 2007  |  6550 views  |  0 comments
German cops arrest phishing gang

German cops arrest phishing gang

14 September 2007  |  10977 views  |  0 comments
Banker Trojans on the rise; pump-and-dump schemes hit Europe

Banker Trojans on the rise; pump-and-dump schemes hit Europe

30 March 2007  |  6884 views  |  0 comments
Hackers steal Skr8m from Nordea accounts in trojan attack

Hackers steal Skr8m from Nordea accounts in trojan attack

19 January 2007  |  9081 views  |  0 comments
French banks lose EUR1 million to Trojan virus

French banks lose EUR1 million to Trojan virus

08 February 2006  |  7192 views  |  0 comments
Panda warns of Bancos.GW Trojan

Panda warns of Bancos.GW Trojan

01 July 2005  |  6186 views  |  0 comments

Related company news

 
Register nowvisit www.innotribe.comvisit www.atos.net

Top topics

Most viewed Most shared
Mastercard to roll out blockchain APIMastercard to roll out blockchain API
13229 views comments | 17 tweets | 28 linkedin
HSBC partners Bud for open banking trialHSBC partners Bud for open banking trial
12253 views comments | 22 tweets | 28 linkedin
satelliteGates Foundation backs Ripple collaboratio...
9549 views comments | 13 tweets | 10 linkedin
Sibos 2017: API or the highwaySibos 2017: API or the highway
9151 views comments | 11 tweets | 22 linkedin
IBM uses blockchain to improve cross-border payments processingIBM uses blockchain to improve cross-borde...
8571 views comments | 9 tweets | 18 linkedin

Featured job

circa £250K total package
London

Find your next job