Hackers are now getting more and more innovative as is obviously expected of them. They are using new technique to rob the PC users of their personal or confidential info, the latest technique, which is known as a pharming attackmock-up Web sites that take users into surrendering their personal info. But where phishing attacks egg on victims to click on links in spam messages to bait them to the mock-up site, pharming attacks lands the prey to the look-alike site whether the address of the real site is typed into their browser.
Recently, Websense reported that an attack this week that targeted online customers of at least 50 financial institutions in the United States, Europe and Asia-Pacific has been closed down. Henry Gonzalez, senior security researcher for Websense said that the attack was famous for the additional attempt given into it by the hackers, who designed a separate mock-up Web site for each financial institution targeted by them.
Websense said that to be infested, a user had to be baited to a Website that hosted pernicious code exploiting a critical susceptibility discovered previous year in Microsoft software. The susceptibility, for which Microsoft had issued a fix, is chiefly risky since it needs a user just to visit a Web site riddled with the pernicious code.
Once decoyed to the Web site, an unpatched PC would make a download of a Trojan horse in a file known as “iexplorer.exe,” which thereafter makes a downloads of five extra files from a server in Russia. The Web sites shown just an error message and suggested that the user close down their firewall and anti-virus software.
Gonzalez said that if a user with a riddled computer thereafter made a visit to any of the targeted banking sites, they were transmitted to a look-alike of the bank’s Web site that gathered their login credentials and transferred them to the Russian server. The user was after that passed back to the legal site where they were previously logged in, making the assault hidden.
