From the outside in

Monday, January 9, 2012

Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords

via Ars Technica by sean.gallagher@arstechnica.com (Sean Gallagher) on 1/9/12

The latest variant of Ramnit, the Windows malware responsible for the recent theft of at least 45,000 Facebook logins, is the latest example of how malware writers and cyber-criminals take "off-the-shelf" hacks and bolt them together to teach old viruses new tricks. Facebook passwords aren't the only thing that the Ramnit virus can grab—thanks to the integration of some of the code from the Zeus botnet trojan, Ramnit can now be customized with modules for all manners of remote-controlled mayhem.

"Ramnit is an interesting beast," said Amit Klein, CTO of web security services firm Trusteer in an interview with Ars. "Until last summer, it was just a generic worm spreading around by infecting files. Then they retrofitted it with financial fraud capabilities."

The evolved version of Ramnit is a potent threat to enterprises, he said, because it can capture any data in a web session—and as more companies move to web-based software as a service for enterprise applications, that could include almost anything.

Read the rest of this article...

Read the comments on this post

Posted via email from The New Word Order

No comments:

Post a Comment