ID theft malware rockets to new highs
The count of password-stealing and keylogger malware variants increased by nearly 400% between 2007 and 2008 according to statistics collated by McAfee Avert Labs, a trend that looks set to continue the company has warned today.
“With the availability of easy-to-use construction kits that allow anyone to create customised Trojans with a simple mouse click, infections with even more sophisticated password-stealing malware is a harsh reality.”
Publishing a report called Inside the Password-Stealing Business: the Who and How of Identity Theft, McAfee argues that the target of cyber criminals will begin to expand beyond bank customers and online gamers.
The company said that skimming attacks, which compromise ATM operating systems and software, are a good example of the sort of new techniques that could gain popularity among the cyber underground.
Password-stealing attacks have matured and cyber criminals have uncovered new ways to go after personal log-ins, it said.
The report reveals techniques are being used widely that can take pictures of a PC screen as a user enters a password or ID and can capture entries from concealed logins.
Safe web sites are being hi-jacked by fake pop-ups that request personal information, and new password-stealing Trojans and worms are in circulation that are designed to steal personal information.