NEWS - January 18, 2013
by Carol~ - 1/18/13 6:29 AM
New Version of Shylock Malware Spreading Through Skype
There is a new version of the Shylock malware that is now capable of spreading through Skype. The new version is spreading mainly in the U.K., Europe and the U.S. and is playing off the fact that Microsoft is about to kill its Messenger application in favor of Skype.
The new version of Shylock has a number of new capabilities, but its goal is the same: stealing sensitive financial data from infected machines. Shylock has been known publicly for more than a year and researchers have watched it morph and adapt its tactics in the last few months. The malware, like other Trojan bankers of its ilk, is designed specifically to steal credentials for online banking sites, and also has the ability to perform code-injection attacks.
One recent change in the Shylock malware's capabilities was the addition of a feature that can detect whether the malware is being installed on a remote machine via the RDP protocol. That method is one that malware analysts and researchers use to analyze the behavior of malware.
Continued : https://threatpost.com/en_us/blogs/new-version-shylock-malware-spreading-through-skype-011713
The Shylock banking trojan now travels by Skype
Shylock banking malware can now spread via Skype, researchers say
New slicker Shylock Trojan hooks into Skype