Two Factor Authenciation Cracked
Over 400 banks worldwide, with more being added have been targeted for one of the most sophisticated trojan horses to date. The trojan horse not only manages to change an manipulate on it own but it is able to intercept two-factor authentication programs such as Verfied by Visa and MasterCard (NYSE MA) Secure Code.
Even the experts have commented: “The scale and sophistication of this emerging banking Trojan is worrying, even for someone who sees them on a daily basis,” says Liam O’Murchu through the Symantec (NASDAQ SYMC) Security Blog in which Mr. O’Murchu reports the story.
“The Trojan intercepts all of this traffic before it is encrypted, so even if the transaction takes place over SSL the attack is still valid. Unfortunately, we were unable to reproduce exactly such a transaction in the lab,” says Liam O’Murchu. While current anti-trojan tools such as Kaspersky and Symantec’s own anti-virus software are able to identify the trojan after a deep scan, it’s only a matter of time before these tools are inpervious to these threats.
If you currently do not have tools in place to at least try and help identify these types of attacks, I recommend that you install Spybot and actively utilize it. This is a free tool that will help try and identify these attacks. While no tool will keep you 100% safe, prevention is key in these matters.
Wonder if this will bring question as to whether their security is in play for the upcoming Visa IPO. While unlikely, the question still remains, can Visa handle the pressures of being a public company and more so, how will security threats like this really affect their ongoing stock price?
Bookmark this article!
As long as Merchant Services do not get hurt by the actions of criminals and only pass the buck on ...
First of all, this is a great forum...so thanks.
I would have been betting on someone from the financial services industry ...
Only time will tell. but for my take, I found it fascinating how merchant account providers are continuing to find ...
Good post. You make some great points that most people do not fully understand.
"Ultimately, with the banks fitting the bill ...
Merchant Warehouse is an ISO (Independent Sales Office). Paypal is not even in the same realm. Paypal is like western ...
You have to make at list $2 mil a year!!! that's what they told me so this thing you wrote ...
Google is trying to be a jack of all trades, their only success is their search and their advertising program. ...
Comment by Arthur on 20 January 2008:
It was bound to happen. I mean come on, what does visa know about merchant security.
Comment by Nisa on 25 January 2008:
of course they don’t know about merchant security. If they know everything, there’s no need of security companies and consultant =/
Comment by Monk_23 on 25 January 2008:
Well i am sure, that the leading security experts will tackle this problem.
Just a matter of time, i guess
Comment by Eric_fr on 25 January 2008:
Now that is one advanced trojan as far as trojans go. They’ll need to improve upon their security now.
Comment by gemini on 11 February 2008:
Yes, they will get this, im sure they have the brightest minds on this as we speak. Good luck symantec
Comment by Jamie on 24 February 2008:
wow. i never realised trojan can be that dangerous. I’ll always make sure my firewall is up and running.
Comment by Rootkit on 24 February 2008:
Hope they come up with a really good solution. Trojans and viruses are becoming deadlier and complex day by day ^^