Slashdot Mirror


New IE Malware Captures Passwords Ahead Of SSL

Ken Treis writes "SANS Internet Storm Center is reporting on a new strain of IE Malware. This one targets bank customers, which in itself is nothing new. But the catch is in the way it does it: it installs a Browser Help Object (BHO) that can capture login information before it is encrypted, and 'watches for HTTPS (secure) access to URLs of several dozen banking and financial sites in multiple countries.'."

21 of 986 comments (clear)

  1. Coming events by Carnildo · · Score: 5, Funny

    Cue the "Gee I'm glad I use FireFox on Linux" posts.

    --
    "They redundantly repeated themselves over and over again incessantly without end ad infinitum" -- ibid.
    1. Re:Coming events by Anonymous Coward · · Score: 5, Funny

      Gee I'm glad I use FireFox on Linux.

    2. Re:Coming events by foidulus · · Score: 4, Funny

      Nah, I'll stick to lynx running on my gamecube, the only way to surf!

    3. Re:Coming events by karniv0re · · Score: 5, Funny

      You just wait, mister, until enough people start using Lynx. Then they'll start coding malware for Lynx. Just think! Pop-ups, Homepage changing... You might even get browser-hijacked to porn sights!

    4. Re:Coming events by sentientbeing · · Score: 5, Funny


      Gee im glad im continously overdrawn and therefore have no money whatsover in my bank account...

      the last time i asked for money at the bank they knocked me back.

      "Fine!" I said, im taking my minus 1500 elsewhere...."

      --

      ------
      beware he who would deny you access to information, for in his mind he dreams himself your master
    5. Re:Coming events by freakmn · · Score: 5, Funny

      I'm glad I use AOL on Windows ME!

      If I actually did, I think I would puke...

      --
      warning: This post is likely to contain gobs of dripping sarcasm. Consume at your own risk.
    6. Re:Coming events by Phexro · · Score: 4, Funny

      True, but they are testing with "Mozilla 5."

      Since Mozilla just hit 1.7, this webpage must have fallen backwards in time through a freak wormhole.

      If you look in the comments, it also mentions something about IE developers being "the first up against the wall when the revolution came."

    7. Re:Coming events by blair1q · · Score: 4, Funny

      $ telnet www.slashdot.org 80
      it's the only way to fly
    8. Re:Coming events by mangu · · Score: 4, Funny

      Oh, now I know where the ASCII-art goatse came from!

    9. Re:Coming events by DarkHelmet · · Score: 4, Funny

      Port 80? Amateur! Try it on 443 :)

      --
      /^[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,4}$/i
  2. And this... by DaHat · · Score: 5, Funny

    Is why I transmit all of my passwords in plain text... not very secure, but a lot less obvious then all of these complicated 'security' or 'encryption' methods.

  3. HA! by Anonymous Coward · · Score: 5, Funny

    This is why I do all my online banking using Gopher.

  4. Because... by Draconix · · Score: 5, Funny

    What's a browser? Is that like Internet Explorer? But why do I need another one when I already have Internet Explorer? Don't I have to use Internet Explorer to connect to the internet?

    --
    By reading this you acknowledge that you have read it.
    1. Re:Because... by I+confirm+I'm+not+a · · Score: 4, Funny

      Don't I have to use Internet Explorer to connect to the internet?

      Whoa! Hold right up there, coyboy! You're telling me there's a difference?

      (Sure it's not necessary but...just in case..."proud Firefox user since 0.6!")

      --
      This is where the serious fun begins.
  5. Open Source compressor used: by geeber · · Score: 4, Funny

    From the article:

    It is actually a 27648 byte Win32 executable that has been compressed using the Open Source executable compressor UPX.

    Cue the FUD saying "look I told you Open Source was inherently less secure!"

  6. Re:I'm suprised by NanoGator · · Score: 4, Funny

    "Why would you fsck with SSL..."

    Because there are no files to check, just packets?

    --
    "Derp de derp."
  7. "New IE Malware" by sulli · · Score: 4, Funny

    (Score: -1, Redundant)

    --

    sulli
    RTFJ.
  8. Man, I'm so sick of this... by NeoGeo64 · · Score: 5, Funny

    When will us Linux users finally get to experience all of these exploits and viruses? It looks like Windows users have all the fun. :-)

  9. Sad... because its true by HighOrbit · · Score: 4, Funny

    Unfortunatly this describes 90% of people out there. The only way I can think of to overcome that kind of pervasive ignorace is a public service campaign like the anti-drug campaigns.

    [joke]
    "This is your computer.. this is your computer on Internet Explorer"
    -or-
    "Friends don't let Friends use Internet Explorer"
    -or-
    "Just say No to Internet Explorer"
    [/joke]

    Seriously, there needs to be a TV campaign or even public service banners on high traffic sites like google or CNN.

  10. Re:Can someone explain... by Pantheraleo2k3 · · Score: 4, Funny

    a) Threaten to never support her computer again
    b) Hide the IE shortcuts
    c) Change the IE homepage to say, in big letters, "YOU'RE NOT SUPPOSED TO BE USING THIS NOW GET OUT AND START FIREFOX"
    d) If you have Zonealarm on her computer, set it so IE has no Internet access
    e) Use IE's Content Advisor to block all Web sites
    f) I could go on and on

  11. My apologies by Flower · · Score: 4, Funny
    Log in, get, get, get owned. MS IE is a joke on your backbone. Log in, get, get, get owned. MS IE is a joke on your backbone. MS IE is a joke.

    I really must stop watching Comedy Central.

    --
    I don't want knowledge. I want certainty. - Law, David Bowie