Potential trojan redirects users to malicious websites

Share this article:

Users of online banking and credit card websites were warned this week of a potential trojan that redirects users to fake financial sites - even if users type in the correct URL themselves.

Calling the potential trojan DNSChanger.eg, researchers at MicroWorld Technologies said Monday that the malware can redirect users to sites that closely resemble authentic financial websites.

The trojan operates by corrupting the process of translating a domain name to the actual website, according to a statement released by MicroWorld on Monday.

After a user types in the web address of a financial institution, which is then translated into a string of numerical information, the trojan changes the NameServer Registry key to a fraudulent IP address, according to MicroWorld.

Govind Rammurthy, MicroWorld CEO, said in a statement that the trojan is "threatening the very fundamentals on which the world does business online."

"If phishing requires you to be lured through emails that lead you to imposter websites, this one needs none of that sort. While the unsuspecting user continues an online transaction in good faith, he could be playing directly into the hands of a remote fraudster," he said. "It’s like creating a make-believe world to fine perfection and then looting everything that a victim has."

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Information sharing requires breaking down barriers, White House cyber guru says

Information sharing requires breaking down barriers, White House ...

The White House has advanced an agenda to promote and facilitate information sharing on security threats and vulnerabilities.

Worm variant of Android ransomware, Koler, spreads via SMS

Worm variant of Android ransomware, Koler, spreads via ...

Upon infection, the Koler variant will send an SMS message to all contacts in the device's address book.

Patch for Windows flaw can be bypassed, prompts temporary fix from Microsoft

Patch for Windows flaw can be bypassed, prompts ...

The Windows zero-day received a patch last week, but the fix can still be bypassed by crafty attackers.