iEntry 10th Anniversary Forum Rules Search
WebProWorld
Register FAQ Calendar Mark Forums Read
Go Back   WebProWorld > Webmaster, IT and Security Discussion > IT Discussion Forum
Silent Banker Trojan
Index Link To US Private Messages Archive FAQ RSS
IT Discussion Forum Having IT issues? Got IT questions? Who doesn't? If you can't get your Apache to work with your MySQL or your php is choking on your ODBC... Let's see if we can help you come up with some ideas.

Share Thread: & Tags

Share Thread:

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 06-13-2008, 07:33 AM
WebProWorld New Member
  
Join Date: Jun 2008
Posts: 1
dravid RepRank 0
Default Silent Banker Trojan
Has you heard about this trojan which targeted 400+ banks?

InternetNews Realtime IT News - Beating Online Fraud With a Phone
Reply With Quote
  #2 (permalink)  
Old 08-20-2008, 04:59 AM
WebProWorld New Member
  
Join Date: Jul 2008
Posts: 4
Freezer John RepRank 0
Default Re: Silent Banker Trojan
Yes i know that Silentbanker trojan apparently is able to circumvent two-factor authorization and inject itself into the middle of ongoing banking transactions, duping bank customers into sending money to attackers while the customer proceeds with what looks like a valid transaction.
Reply With Quote
  #3 (permalink)  
Old 08-20-2008, 10:10 AM
wige's Avatar
Moderator
WebProWorld Moderator
  
Join Date: Jun 2006
Location: United States
Posts: 2,648
wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9wige RepRank 9
Default Re: Silent Banker Trojan
I have heard a bit about the Silent Banker Trojan, but I have to admit I am somewhat confused how this phone out of band authentication would solve the problem in any way.

From my understanding, the Trojan works by waiting for the user to begin an authenticated session with the bank, then during that session alters the transaction data before sending it to be encrypted and transmitted to the bank. The phone system appears to try to correct for this by taking the authentication away from the computer. However, the actual attack occurs after the user is authenticated.
__________________
The best way to learn anything, is to question everything.
Reply With Quote
Reply

  WebProWorld > Webmaster, IT and Security Discussion > IT Discussion Forum

« Convert .docx to .doc | Firefox vs IE7 - works in one, but not the other »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Google Exercises Right To Remain Silent To CNET Insider Reports 6 08-08-2005 04:47 PM
Google Exercises Right To Remain Silent To CNET Google Discussion Forum 0 08-05-2005 11:09 AM
How to get rid of trojan? madhu Internet Security Discussion Forum 4 06-15-2005 06:35 PM
Yet another new Mitglieder trojan WPW_Feedbot IT Discussion Forum 0 04-16-2005 10:27 PM
Trojan software ldylion214 Internet Security Discussion Forum 12 06-30-2004 08:00 PM


All times are GMT -4. The time now is 05:11 AM.

WebProWorld - Archive - Top

WebProWorld | Advertise | Contact Us | About | Forum Rules | MVP's | Archive | Newsletter Archive | Top | WebProNews
WebProWorld is an iEntry, Inc. ® site - © 2009 All Rights Reserved Privacy Policy and Legal
iEntry, Inc. 2549 Richmond Rd. Lexington KY, 40509

Search Engine Optimization by vBSEO 3.3.0