Welcome to NBlog, the NoticeBored blog

I may meander but I'm 'exploring', not lost

Mar 6, 2012

Malware-in-the-middle

The Register reports that Shylock "man in the browser" malware opens a fake live chat/customer support window when a victim visits an online banking site.  The victim, thinking he/she is interacting with a bank person, is thereby fooled into disclosing login credentials or authenticating false transactions.

The malware attempts to evade antivirus software by deleting its files from disk while the scanner runs, remaining in memory only until the machine is shutting down at which point it writes itself back onto disk.

Regards,
Gary (Gary@isect.com)