[prev in list] [next in list] [prev in thread] [next in thread] 

List:       isn
Subject:    [ISN] Banking malware spies on victims by hijacking webcams, microphones, researchers say
From:       InfoSec News <alerts () infosecnews ! org>
Date:       2012-05-23 11:34:56
Message-ID: alpine.DEB.2.02.1205230634430.4955 () infosecnews ! org
[Download RAW message or body]

https://www.computerworld.com/s/article/9227387/Banking_malware_spies_on_victims_by_hijacking_webcams_microphones_researchers_say

By Lucian Constantin
IDG News Service
May 22, 2012

A new variant of SpyEye malware allows cybercriminals to monitor 
potential bank fraud victims by hijacking their webcams and microphones, 
according to security researchers from antivirus vendor Kaspersky Lab.

SpyEye is a computer Trojan horse that specifically targets online 
banking users. Like its older cousin, Zeus, SpyEye is no longer being 
developed by its original author, but is still widely used by 
cybercriminals in their operations.

SpyEye's plug-in-based architecture allows third-party malware 
developers to extend its original functionality, Kaspersky Lab malware 
researcher Dmitry Tarakanov said in a blog post on Monday. This is 
exactly what happened with the new webcam and microphone spying feature, 
which is implemented as a SpyEye plug-in called flashcamcontrol.dll, 
Tarakanov said.

As suggested by the DLL's name, the malware accesses these two computer 
peripherals by leveraging Flash Player, which has webcam and microphone 
control functionality built in.

[...]


_______________________________________________
LayerOne Security Conference
May 26-27, Clarion Hotel, Anaheim, CA
http://www.layerone.org

[prev in list] [next in list] [prev in thread] [next in thread]