There is no doubt in the fact that online banking is convenient and fast, but do you think it is safe as well? Believe it or not, when you go online you are under constant danger, especially while doing financial transactions. There are hundreds and thousands of threats always ready to steal your credentials.
Lately, a multi-national computer security company, Kaspersky Lab discovered a new kind of malicious program to attack computers used to do online banking activities. Called as Neverquest Trojan, this latest program has been designed primarily to bypass standard online security precautions, including web injection, social engineering, and remote system access amongst others. Kaspersky Lab further notified that this Trojan can be a menace to all the users who regularly indulge in different kind of online banking activities, as it has the potential to attack any bank in any country.
Kaspersky Lab’s Principal Security Researcher, Sergey Golovanov said, “Neverquest is just one of the threats aiming to take over the leading positions previously held by programs like ZeuS and Carberp.” It is also believed that due to its versatile features, it has the ability do major harm especially during the holiday season.
In an analysis Golovanov further explained, when an infected user tries to login to the targeted sites, Neverquest instantly activates itself to steal login credentials of the victim. Then this Trojan sends the compromised information to a control server, enabling the attackers to get a hold of affected accounts through Virtual Network Computing (VNC) server. Through VNC it is quite impossible to differentiate between a genuine user and a criminal. Once the attacker gets complete access to victim’s account, he can easily transfer all the funds in his own account. However, Golovanoc has noted that in majority of the cases the criminals are sending the funds from one victim’s account to another. And before finally directly transferring the funds to his account, the attacker repeats this process several times, making it quite impossible to trace the activities.
The computer security company on the entire incident pointed out that ordinary security software might not be an ideal choice to prevent a Trojan like Neverquest.
Photo credit: blog.kaspersky.com