Posted Wednesday 10th September 2008 00:07 GMT
Woo! This just in from McAfee
Notice
This is a Low-Profiled Threat Notice for PWS-Banker
Justification
PWS-Banker has been deemed Low-Profiled due to media attention at http://www.theregister.co.uk/2008/09/09/twitter_orkut_attack/.
PWS-Banker is referred to as the "OrkutTron Trojan" in article at theregister.co.uk.
Read About It
Information about PWS-Banker is located on VIL at: http://vil.nai.com/vil/content/v_124984.htm
Detection
PWS-Banker was first discovered on June 6, 2004 and detection, for this particular variant, was added to the 5156 dat files (Release Date: November 5, 2007).
If you suspect you have PWS-Banker, please submit a sample to http://www.webimmune.net
Risk Assessment Definition
For further information on the Risk Assessment and Avert Labs Recommended Actions please see: <http://www.mcafee.com/us/threat_center/outbreaks/virus_library/risk_assessment.html>
For breaking security information from McAfee® Avert® Labs visit:
McAfee Avert Labs Blog
http://www.avertlabs.com/research/blog
AudioParasitics - The Official PodCast of McAfee Avert Labs
http://podcasts.mcafee.com/audioparasitics
Sign up for McAfee® Avert® Labs Security Advisories
http://www.mcafee.com/us/threat_center/securityadvisory/signup.aspx
Posted Wednesday 10th September 2008 09:21 GMT
That's the problem with the current system. One is often told one needs to update some thing or other, and it is all too easy to assume the suggestion is legit :-( What is needed instead is a warning that your system isn't up to date and the URL of the official site to go for the update, if desired. At least that gives one a chance to spot dodgy looking URLs.
Sign up, sign up for The Register's weekly IT security newsletter - click here
Back to the article
