MBR Trojan Approaching the 3-Year Mark

bl8n8r writes "Still going strong since February 2006, the 'Sinowal' Master Boot Record infector (also called 'Torpig' and 'Mebroot' by various anti-virus companies) has compromised more than half a million financial accounts. An HTML injection engine adds fields to login pages to compromise credentials. Injection is triggered by the Web addresses — more than 2,700 bank and e-commerce sites are hard-coded into the malware. 'RSA investigators found more than 270,000 online banking account credentials, as well as roughly 240,000 credit and debit account numbers and associated personal information on Web servers the Sinowal authors were using to set up their attacks.' The majority of anti-virus and anti-malware scanners do not detect this threat."

whiskey and slashdot...

[tjstork]

I just saw this line in the article about a three year old Trojan and I thought, man wouldn't that thing get kinda full at some point?

Re:The majority of anti-virus/anti-malware?

[symbolset]

Not to put too fine a point on it, but it does appear that Sinowal is free as in beer as well.

Re:What efforts are being made to find the operato

[symbolset]

Yes, you're being an ignoramus. That's ok. It was your turn. Last week was my turn.

The depth of my ignorance can be measured by the length of time I've been aghast at the carelessness and clue deficit of software engineers, system designers, corporate and government IT staff. We're over a quarter century now, so I must be really, really dumb.

Fortunately for me, in that I'm at least not unique.

Re:Someone had to do it

[Chris+Tucker]

You mean to say that this three year old Trojan ONLY affects machine running the Windows Operating System.

I'm shocked, shocked, I say!

"Botnets, spammers botnets!

What kind of boxes make up botnets?

Compaq, HP, Dell and Sony, true!
Gateway, Packard Bell, maybe even ASUS, too!

Are boxes, found on botnets, all running Windows. FOO!"