- News & Events
September 10, 2013
More sophisticated, less expensive malware toolkits has malware spreading across the world. The TrendLabs Q2 2013 Security Roundup report found that online banking threats are no longer in just Europe and the Americas. Now, they’re in Brazil, South Korea and Japan with two percent of Indians falling victim to malware.
The report went on to say that India headed the list of the top-10 spam-sending countries at 12.99 per cent. It was followed by Saudi Arabia (7.64 per cent), the United States (5.81 per cent) and South Korea (4.43 per cent).
Security expert Dhanya Thakkar notes, “We found an online banking malware that modifies an infected computer… to redirect a customer of certain banks to phishing sites. We also saw more Citadel variants (detected as ZBOT), targeting different financial service institutions. [This] malware not only target[ed] big banks, but also smaller ones, including those that exclusively cater to online banking customers.”
Based on targeted attacks, the report found rich text format (.RTF) files were the most common used with Microsoft Excel files running a close second.
Business-standard.com offers ten ways for users to protect themselves from attack:
1. Always use trusted devices (home or office PC, personal mobile devices) to log into your Internet bank account. Banks send a one-time password to your registered mobile numbers and email IDs. Do not share your username and password.
2. Avoid using the same password across online accounts. Change your password every few months.
3. Regularly check your bank, credit and debit card statements to ensure transactions are legitimate.
4. Do not respond to text messages, automated voice messages and emails from unknown or blocked numbers.
5. Do not download any software or application unless you trust the source.
6. Do not respond to unsolicited emails, text messages or phone calls requesting personal information.
7. Apply the latest security updates and patches to your software programs and operating systems.
8. Never click links or attachments associated with unsolicited mail/website/link/pop-up that might ask for information or say you won prize money, a lottery, etc.
9. Scrutinize every app you download regardless of the source.
10. Avoid using free unsecured Wi-Fi.
ThreatMetrix is the fastest-growing provider of integrated web fraud and cybersecurity solutions. The TrustDefender™ Cybercrime Protection Platform helps companies prevent unauthorized access to web and mobile applications, protect sensitive data, and secure transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. ThreatMetrix protects more than 1,900 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.
To join in the cybersecurity conversation, follow us on Twitter @ThreatMetrix.
Posted by Dan Rampe
Tags: Account Takeover, Account Takeover Fraud, Bank Fraud, Botnets, CNP fraud, Cookieless Device Identification, Cookies, Credit Card Fraud, Cyber attacks, Cyber Warfare, Device Identification, Fraud Prevention, Hacking, Identity Spoofing, Identity theft, Malware, Malware Protection, Man-in-the-Browser Detection, Mobile fraud, Online Fraud, Phishing, PII, ThreatMetrix, ThreatMetrix Cybercrime Index, ThreatMetrix Global Trust Intelligence Network, TrustDefender Cybercrime Protection Platform, Web Fraud