The next time you log into your bank account using your computer, look closely before keying in your personal details. You might just be giving your personal details to cybercriminals.
A new malware called SpyEye is being used by cybercriminals to gain access to bank accounts of unsuspecting Internet-banking customers, the Association of Banks in Singapore (ABS) warned in a statement yesterday.
ABS said there were a “few cases” of customers whose computers had been infected by SpyEye. A variant of the malware was also reportedly able to in-fect smartphones to steal the one-time password online-banking customers get in a text message.
Mr Eric Chan, regional technical manager of network-security firm Fortinet in South-east Asia and Hong Kong, said that malware like SpyEye get into computers primarily when users unintentionally download malicious computer software from the Internet.
Mr Chan said this can occur when the user “visits a website, views an e-mail attachment or clicks on a deceptive pop-up window”.
“For mobile devices, (malware) infection can occur in many devious ways. These include clicking on a link or attachment that contains the virus. Within seconds, the virus can secretly seize control of the phone,” he said.
ABS also warned users to look out for pop-up browser windows which tell users: “We are checking your security settings. Please wait 1-10 minutes. Please be patient; don’t close and reload the page while we are checking the information.”
This is the most recognisable tell-tale sign of SpyEye infection and indicates that a user’s credentials are being stolen, ABS said.
Cybercriminals may also trick and prompt people hit by SpyEye to give their one-time passwords. Mr Trevor Haeger, chief information officer of Standard Chartered Bank Singapore, advised customers not to provide their log-in information.
He added that customers should close their browser immediately if they receive multiple prompts to re-enter their log-in information or are re-directed to another site to key in their log-in credentials.
Banks such as OCBC, DBS and Citibank have also released warnings on their websites about SpyEye.
myp@sph.com.sg
For more my paper stories click here.
Article source: http://www.asiaone.com/News/AsiaOne+News/Singapore/Story/A1Story20110930-302333.html
View full post on National Cyber Security » Virus/Malware/Worms