Slashdot Mirror

← Back to Stories (view on slashdot.org)

New IE Malware Captures Passwords Ahead Of SSL

Posted by simoniker on Tuesday June 29, 2004 @07:53AM from the tricky dept.

Ken Treis writes "SANS Internet Storm Center is reporting on a new strain of IE Malware. This one targets bank customers, which in itself is nothing new. But the catch is in the way it does it: it installs a Browser Help Object (BHO) that can capture login information before it is encrypted, and 'watches for HTTPS (secure) access to URLs of several dozen banking and financial sites in multiple countries.'."

3 of 986 comments (clear)

Min score:

Reason:

Sort:

Re:Let's not be hasty... by HeghmoH · 2004-06-29 08:05 · Score: 1, Offtopic

And is everyone here is just assuming that information is authentic? That could just be some poor random schmuck whose name got used by someone else (identity theft happens), so let's not start any DDOS or Phone tree attacks on the guy. Or for the more dense:

"You! Step away from the wardialer! NOW!"

--
Your lucky number is 3552664958674928. Watch for it everywhere.

It's ok. I'll just wardial the number in your sig instead.

--
Mod down posts with a "Free Mac Mini/iPod" sig, they're spam!
Remember the source code theft? by Yaa+101 · 2004-06-29 08:14 · Score: 1, Offtopic

It seems that some people have been studieng...

It looks like hunting season has been opened...

IE users, do yourself a favor and start listening to all the bright people on here telling you to use Firefox or Opera...

I use Phoenix/Firebird/Firefox since 0.4 and am happy since.
Fine, bitch to the owner of the netblock by Theatetus · 2004-06-29 08:22 · Score: 1, Offtopic

Unlike the domain name, that will not be fraudulant:

host www.refestltd.com
66.226.64.11

whois 66.226.64.0
Abacus America Inc.
ABAC
5276 Eastgate Mall
San Diego
CA
support@aplus.net

--
All's true that is mistrusted