Another computer Trojan has been discovered ‘in the wild’ effecting only Verizon customers. It is called SpyEye and effects those Verizon customers who use the Verizon website to make online payment.
Written up in a security blog called Help Net Security at security.org According to a recent article:
“The attack is invisible to Verizon customers since the malware waits for the user to logon and access their billing page and only then injects an authentic-looking replica webpage that requests this information. Since the user has logged on and has navigated to the familiar billing page they have no reason to suspect this request for payment information is suspicious,” Klein added.
The information stolen includes:
- First name, last name
- Street address, City, state, zip
- Phone number, phone type
- Email address
- Country of citizenship
- Social Security Number
- Date of Birth
- Mother’s Maiden Name
- Card number, expiration date and CVV.
While this attack is not technically new, it continues a financial malware trend we have been tracking in recent weeks: a shift away from stealing usernames and passwords to stealing payment and credit card data.
These kinds of computer bugs; HTML injection Trojans, are put on computers without the computer end-user knowing. They are more common today than ever before and can cause significant identity theft damages. To learn more about how to protect your business network from these kinds of attacks, call Menlo Technology Consulting today.