An international operation involving law enforcement agencies and private sector companies is driving down the threat from a type of malicious software used by criminals to steal from bank accounts called Shylock. This malware infected to at least 30,000 Windows PCs across the world and stole funds from victims’ online banking accounts. UK intelligence agency GCHQ was also involved in investigating the cybercriminal operation.
The website domains used to control the malware were also shut down, as global cyber police gathered over 9 and 10 July in the operational centre at the European Cybercrime Centre (EC3) at Europol in The Hague.
Victims are typically infected by clicking on malicious links, and then being convinced to download and run the malware. Shylock will then seek to access funds held in business or personal accounts, and transfer them to the criminal controllers.
According The Guardian, Once on a system, it would detect when a user was visiting a banking website, create fake login sections of that site and then pilfer banking logins. This information would be sent to the criminals, who would siphon off money from the accounts.
Shylock could also take screenshots or record videos of specific web pages, and upload stolen information and data about the infected computer and installed software.
Intelligence suggests that Shylock targets the UK more than any other country, despite the suspected developers being based elsewhere. The NCA is therefore coordinating international action against this form of malware.
Solution:
The latest operating system update will result in the removal of Shylock infections in machines which have been set to automatically update Windows.
Computer users opting for automated operating system updates - which can ensure computers infected with malware such as Shylock are cleaned automatically - need take no action at this time. Those not opting for automatic updates, or who would like to learn more about how to check their Windows-operated computers and remove infection, can go to: http://support.microsoft.com/gp/cu_sc_virsec_master
Further advice on internet security can also be found on Get Safe Online.
Author Venkatesh Yalagandula Follow us Google + and Facebook and Twitter
