Trusteer Uncovers New Banking Malware
The malware uses live chat to trick users into signing and/or verifying fraudulent transactions.
Trusteer researchers recently found a new form of malware that exploits banking Web sites' live chat functionality.
"The site, using convoluted language, then tells victims: 'The system couldn't identify your PC. You will be contacted by a representative to confirm your personality. Please pass the process of additional verification otherwise your account will be locked. Sorry for any inconvenience, we are carrying about security of our clients,'" Liebowitz writes. "If the poor grammar doesn't raise a red flag, the malware attack then presents users with a live online chat session that allows the hackers to 'perform real time fraud by enticing the victim to sign/verify fraudulent transactions.'"
Go to "New Banking Malware Launches Fake Live Chat" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.