back to article Halfbreed trojan targets US banks

A new piece of malware has been linked to thefts of $4m from more than 24 American and Canadian banks in just a few days. Researchers at IBM reckon that hackers combined code from two malware types, known as Nymaim and Gozi, to create GozNym, a persistent and powerful trojan. Customers of numerous credit unions and popular e- …

  1. Version 1.0 Silver badge
    Big Brother

    Funding opportunity?

    Given that the NSA/GCHQ et al appear to be monitoring everything on the Internet, it's a puzzle to me that these malware scams continue to pop up . . . unless of course this is actually backdoor funding for these organizations.

  2. Mikel

    Knowing you have a problem

    >Once dropped onto compromised Windows PCs....

    If only there were an alternative...

  3. Palpy

    Does anyone know --

    -- if the trojan facilitates infection of the bank's systems? Or does it remain resident on the client's PC only?

    I read over the IBM report, but I'm in a hurry and so adding distraction to my native ignorance, I probably misunderstand most of what I scanned.

    My home system is secure against Windows trojans, but I am curious whether the described malware potentially erodes the security of online banking even if the client's PC is secure. Thoughts?

    1. Version 1.0 Silver badge

      Re: Does anyone know --

      My reading of the report says it's client PC's only.

  4. Anonymous Coward
    Joke

    The obvious solution is to ban OS X, Android and Linux from the Intertubes.

    The only sure solution to all this 'banking' malware is to ban OS X, Android and Linux from the Intertubes.

    1. Anonymous Coward
      Anonymous Coward

      Re: The obvious solution is to ban OS X, Android and Linux from the Intertubes.

      Don't forget we need to ban strong encryption form the intertubes too.....

      That will stop all bad guys dead in their tracks, if certain members of government are to be believed.

      I think we need an new icon showing the entire Internet bent over a table....... but failing that you could still substitute a photo-shopped Paris.....

    2. Anonymous Coward
      Anonymous Coward

      Re: The obvious solution is to ban OS X, Android and Linux from the Intertubes.

      Why not just shutdown online banking/purchases, business really should not be buying anything via a web page. What happened to preferred suppliers and invoicing (or more simply the art of paying as late as possible with direct bank transfers/cheques in the post). Any company worth dealing with should have enough buffer cash to wait until the transfer completes but instead everyone wants to trade with fly by nights who disappear in the morning.

      That leaves the rest of the general public who quite frankly would be better only purchasing only from suppliers who will ship only to the purchaser's address with no chance for redirection, that and blocking all transactions with anonymous money transfer systems or other ways for crims to collect the loot.

      Online fraud is completely avoidable but it needs everyone to realise that whilst they keep paying the banks for their insufficient security then they will keep paying forever. It also needs the public to understand that any money transfer with someone you cannot see directly is a risky business and the security of their own IT equipment is their responsibility

      If you want to stop malware then you have to removed the insecure OS/hardware out of the loop, that means that you wont be doing banking via windows, apple, android etc on any open hardware platform. It is not open so the hardware/software maker is responsible when it is insecure / doesn't work.

      Secure Online Banking needs to use a standalone thin client running on dedicated hardware with a secure network connection direct to bank network. No fancy wireless connections no radiation transfer to or from hardware at all, you want to do business with someone remotely then they have to be registered with your bank and provide your bank's supplier ID to set up any transfer. All ID's are at the bank's end and the user gets their own list of preferred suppliers and types in how much to send, home shopping is bank calls user on callerID enabled landline to confirm transaction via use once verbal token exchange, in store is direct connection of smart device with smart interface used to confirm. If telephone or bank system isn't secure then they pay for fraud commited upon it. I Personally would make all transactions final with card holder responsible for any costs in incident of recall, basically if you commit to a purchase then you pay any costs incurred in the event you change your mind half way though same as if you paid cash.

      The fact is everyone wants security to be someone else's problem and until the people we trust to look after our money are forced to fix this problem then fraud will continue. currently nothing transferred across the internet or public comms is secure, until there is some ownership by the carriers then then it never will be.

      Lastly throw away all your bank cards they are never going to be secure until they are really smart, with their own built in secure comms to link via point of sale/customer's landline, thin client,GPS, camera with decent bio-metric access control and coercion challenges anything less is just more of the same insurance companies paying criminals because everything should be easy and no one wants to fix the problem whilst they are not loosing out. IF you want security then you are better keeping gold under your bed and living in a vault.

  5. TY_W

    Coding

    I have been using the same tactic for years. Taking snippets of code and combining those snippets of code. This is a common method when trying to learn specific code and or if someone is in a hurry wanting to complete what they are working on. Eventually it lead's to writing code from scratch assuming the brain remembers the syntax.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2020