Executable file disguises itself as an image and seems to spread through pop-up ads
Security researchers warned Tuesday of a new security threat making the Net rounds: A file that appears to spread through pop-up ads and capture personal data.
The Trojan horse file poses as an image file named "img1big.gif" but is actually an executable that installs a malicious add-on to Microsoft Corp.'s Internet Explorer browser. The add-on, known as a BHO, or browser helper object, then monitors for and records outbound data to the Web sites of several dozen financial institutions, according to an analysis posted on the SANS Institute's Internet Storm Center Web site.
Targeted Web sites include those operated by Citibank, Canadian Imperial Bank of Commerce and Deutsche Bank, according to the analysis.
"I believe that this particular type of malware represents a huge threat to the online financial industry," researcher Tom Liston wrote in the report. "As the proliferation of ad/spyware shows, installing executable software on a user's machines is far too easy."
Official Story Here
Linear Mode
