Watch out when you access and transact from your online banking account! The notorious Capshaw aka Shylock strikes back. The resurgence of online banking malware, Shylock or known as Caphaw, has been spotted to affect customers of 24 financial institutions. The security firm Zscaler has reported on Wednesday that an increasing number of Shylock infections resurged in the last month, well after the first of threat in 2011.
So what is Shylock/Caphaw malware?
The Shylock/Caphaw malware was first found in 2011 and once again, earlier in 2013 to attack European banking customers. This time, the Shylock/Caphaw Trojan application has hit customers of the four major American banks that are Bank of America, Chase Manhattan Corporation, Wells Fargo, Citi Private Bank and also other financial institutions such as Bank of the West, Capital One, U.S. Bancorp and others.
How it works?
Shylock is found to be more sophisticated and efficient than any banking malware. According to an analysis on Caphaw published by by ESET security researcher Aleksandr Matrosov, “This is one of the few pieces of malware that can automatically steal money when the user is actively accessing his banking account.” The research also revealed other malware associated with Shylock/Caphaw are Gataka, Carberp, Tinba and Ranbyus.
Furthermore Matrosov also claimed that Shylock/Caphaw malware buries itself in Windows Explorer and also hides inside the program files of the operating system to enable it to control system shutdown or rebooting process. Thus, Shylock malware is able to resist and restore after the antivirus scanning and cleaning procedure occurs.
Though it is not yet clear how Shylock/Caphaw malware is reaching banking customers, researchers at Zscaler ThreatLabZ security suspected that “it is more than likely arriving as part of an exploit kit [homing] in on vulnerable versions of Java.” Devices infected with Shylock/Caphaw malware are found to run Windows XP and a Java 6 version as that version consists of multiple exploitable and vulnerabilities.
Hence, check your computer with an experienced tech support assistant to detect if your PC fosters any Shylock/Caphaw malware today or simply