A variant of banking trojan Shylock is now capable of spreading through Skype, according to researchers. In a blog post, Peter Kruse, CTO at Denmark-based CSIS Security Group, wrote last week that a new plug-in for the malware, called msg.gsm, may allow attackers to send and receive messages on users’ Skype accounts, transfer files, delete recent histories of messages and file transfers, and bypass restrictions for connecting to Skype. The variant can also spread through local shares and removable drives. Victims of Shylock, which logs keystrokes and injects rogue phone numbers and chat forms into web pages, have primarily been customers of U.S. and European financial institutions.
Please login or register first to view this content.