Tick-like banking Trojan drills into Firefox, sucks out info

http://www.theregister.co.uk/2012/03/01/neloweg_banking_trojan/

 

I'm still glad I don't bank online!

 

lol a bit dramatic. It sounds like a fairly typical patching virus.

 

Generally speaking, online banking will require a certain amount of competence and nous.

 

You can protect yourself from a lot of these (not all, there is a bit of 64bit malware around) by using a 64bit browser, which will be invisible to the 32bit malware.

 

Why did they single out Firefox though?

 

What do you mean? 64bit OS's can run 32bit code. A 32bit dll can be loaded into a 64bit exe.

 

Uh, you sure about that?

 

From the article:

----
rich

 

OK... drive-by download... An exploit that will result in a drive-by download, perhaps? Prevent the exploit, either by using IE Protected Mode, Google Chrome, a restricted Firefox, etc. Or, just block execution with a default-deny. Is it social engineering? Adobe Flash Player trick? Maybe a Adobe Reader trick? I suppose the answer here is not to fall for it?

Spam.. same deal. Don't open strange e-mails, default-deny...

Targeted e-mail... same deal?

Also, if you're doing home banking, and if you're restricting communications to your bank servers only, then how will the malware connect out?

Isn't this one more of those another one bites the dust situations?

 

LOL! I had just finished writing a post about that.

 

Yikes, I just looked it up and stand corrected.

 

Yeah, like Waterfox or IE 9!