Comments Subscribe to Personal Liberty News Feed Subscribe to Personal Liberty
 

New Malware Attacks Target Online Banking

LONDON, Feb. 2 (UPI) — Computer criminals have found a way to hack their way past the latest generation of online banking security techniques, British researchers say.

In the scheme, account holders are tricked by an offer of training in a new “upgraded security system” after being logged into the bank’s real site, after which money is moved out of their account but evidence of the theft is invisible to the user, the BBC reported Thursday.

The scam involves what has been dubbed the Man in the Browser attack, or MitB, where the malware the user has been tricked into downloading lives in their Web browser and can get between the user and the bank Web site, altering what is seen and changing details of what is being entered.

Some versions of the MitB will change payment details and amounts and can also change on-screen balances to hide its activities, experts said.

“The man in the browser attack is a very focused, very specific, advanced threat, specifically focused against banking,” said Daniel Brett of malware testing lab S21sec.

Every time a new update to the malware is released, it takes security companies a number of weeks to learn how to spot it, he said.

Online banking fraud losses totaled $27 million in the first six months of 2011, a Financial Fraud Action U.K. spokesman said.

But banks are taking action against such scams, FFA’s Mark Bowerman said.

“We’ve got intelligent fraud detection software, and it’s used to seeing how you operate your online bank account.

“Any deviations from the norm and the software is going to pick it up — that may be the type of transaction you’ve made or the amount,” he said.

UPI - United Press International, Inc.

Since 1907, United Press International (UPI) has been a leading provider of critical information to media outlets, businesses, governments and researchers worldwide.

Facebook Conversations

Join the Discussion:
View Comments to “New Malware Attacks Target Online Banking”

Comment Policy: We encourage an open discussion with a wide range of viewpoints, even extreme ones, but we will not tolerate racism, profanity or slanderous comments toward the author(s) or comment participants. Make your case passionately, but civilly. Please don't stoop to name calling. We use filters for spam protection. If your comment does not appear, it is likely because it violates the above policy or contains links or language typical of spam. We reserve the right to remove comments at our discretion.

Is there news related to personal liberty happening in your area? Contact us at newstips@personalliberty.com

Bottom
close[X]

Sign Up For Personal Liberty Digest™!

PL Badge

Welcome to PersonalLiberty.com,
America's #1 Source for Libertarian News!

To join our group of freedom-loving individuals and to get alerts as well as late-breaking conservative news from Personal Liberty Digest™...

Privacy PolicyYou can opt out at any time. We protect your information like a mother hen. We will not sell or rent your email address to anyone for any reason.