August 28, 2012

Researchers spot new keylogger that hides in Windows help file

A new data-stealing trojan has turned up on the systems of one of Radware's customers, according to researchers at the network security firm. Researchers said Tuesday that the malware, dubbed Admin.HLP, is designed to log keystrokes and remotely send passwords, credit card numbers and other private information to an attacker-owned server. The trojan gets its name because it hides from detection inside a Windows help file and then is attached to emails. Once installed on a target's machine, it configures the Windows startup process so the trojan runs each time the computer reboots. It is unclear how widespread the threat is, or which organizations it may be targeting. A request for comment was not immediately returned.

Related Articles
Related Topics

More in News

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.