January 22, 2013

Shylock variant targets Skype users

A variant of banking trojan Shylock is now capable of spreading through Skype, according to researchers. In a blog post, Peter Kruse, CTO at Denmark-based CSIS Security Group, wrote last week that a new plug-in for the malware, called msg.gsm, may allow attackers to send and receive messages on users' Skype accounts, transfer files, delete recent histories of messages and file transfers, and bypass restrictions for connecting to Skype. The variant can also spread through local shares and removable drives. Victims of Shylock, which logs keystrokes and injects rogue phone numbers and chat forms into web pages, have primarily been customers of U.S. and European financial institutions.

Related Articles
Related Topics
Related Links

Sign up to our newsletters

More in News

Three LulzSec members plead guilty in London

Ryan Ackroyd, 26; Jake Davis, 20; and Mustafa al-Bassam, 18, who was not named until now because of his age, all admitted their involvement in the hacktivist gang's attack spree.

WordPress tightens security with two-factor authentication

The new feature is immediately available for users and "secret" codes can be accessed via SMS or through the Google Authenticator app.

Microsoft fixes three "critical" flaws with Patch Tuesday release

The biggies are two vulnerabilities in Internet Explorer and a single weakness in Remote Desktop Connection.