Welcome to the SecAware blog

I spy with my beady eye ...

6 Mar 2012


The Register reports that Shylock "man in the browser" malware opens a fake live chat/customer support window when a victim visits an online banking site.  The victim, thinking he/she is interacting with a bank person, is thereby fooled into disclosing login credentials or authenticating false transactions.

The malware attempts to evade antivirus software by deleting its files from disk while the scanner runs, remaining in memory only until the machine is shutting down at which point it writes itself back onto disk.

Gary (Gary@isect.com)

No comments:

Post a Comment