New Malware Can Cause Issues After Deletion

Targeting financial institutions, victims can serve as drones even after cleaning.

An Article Review.

ServIcons_ITAudit_01Our friend Wes Pollard at Home Bank submitted this new malware alert to us and because it targets banking institutions specifically we thought we’d share it with you as well.

Dubbed Pinkslipbot, the malware uses a variety of methods to harvest bank account credentials from victims, and reconfigures system firewalls to make infected machines act as proxies for its command and control servers. Even after Pinkslipbot itself has been cleaned from a system systems may still remain configured to redirect traffic, allowing them to continue relaying commands to other infected machines.

For those concerned about infection, McAfee is offering a free tool that can reset Pinkslipbot’s network configuration changes, in addition to cleaning the infection itself.

Original article by Danny Palmer writing for ZDNet.

same_strip_012513

 

Related Posts

Considerations – Why you should choose infotex, Inc. as your next MSOC!

Reasons why we should be considered! infotex provides a number of services that can be checked out if you click over to offerings.infotex.com! We even made a movie with all the reasons why infotex...
READ MORE

The Magnificent Seven 2023

Seven Trends . . . …that small bank Information Security Officers face in 2023 Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Welcom...
READ MORE

Cybersecurity Awareness Month Awareness Poster

About Services Audit & Assessment Policies & Procedures EDR/MDR/XDR Managed SIEM Consulting Services Network Monitoring Education Resource Library Webinars & Workshops V...
READ MORE

infotex

MANAGING TECHNOLOGY RISK

Linkedin-in Facebook-f Youtube Twitter

SERVICES

EDUCATION

COMPANY

CONTACT

SIGN UP FOR OUR BLOG

As part of infotex‘s service to our clients, find “non-mainstream” articles about relevant security issues.

Facebook Youtube Twitter