Clampi Virus | Clampi Trojan
The clampi virus is in the news in a couple places today. Surprisingly it’s in Symantec’s virus database since January and rated as a low risk. However, the sole purpose of this trojan is to monitor your Windows based computer for connections to more than 4500 different financial related sites and log any usernames and passwords used to connect. When it finds your login information, that’s then sent along to a server that the trojan or virus writer controls and then they can transfer money out of your account or accounts.
Apparently this particular piece of malware is quite well written as well, because it is fairly stealthy in it’s infection of a Windows PC, with one of the things tipping users off being an application known as PSExec to find other machines on the local network to infect.
Many of the recommendations for Business and home users run along the lines of using a dedicated machine just for your financial transactions online and to not use the same machine for browsing the internet or checking email. Unfortunately for many home users the luxury of having multiple machines is just not practical. I think the use of virtual machines are something that could be an option (although if your host machine is running Windows and infected with a key logger, then your virtual machine usage could also be at risk.) There are suggestions also about using alternative operating systems such as Mac or Linux for conducting such transactions. Unfortunately there are still some banking and finance sites that have a requirement of Internet Explorer either intentionally or through poor design.
An article from July indicates that there were around 500,000 estimated infections of this trojan, and like many it may be undergoing constant modification to evade virus detection signatures. It’s not that linux and mac are impossible to be targeted, but right now they are not and that gives you an advantage in using them currently. So, if you’re checking email, browsing the web and social networking sites on the same machine that you pay your bills it’s time to start thinking twice about the sites you visit and making doubly sure your antivirus is up to date and working. Consider even using a bootable live cd as your sandbox environment for logging in to online banking sites, that way you could leverage the same system without having to buy a computer JUST for that purpose. From what I see the key logging of the clampi virus or clampi trojan wouldn’t persist through a boot to a livecd or second operating system on the pc.
Popularity: 1% [?]
Related Posts - The spammers win a round There is a company (well, unfortunately, WAS a company) called Blue Security. They had an innovative approach to stopping spam. A small download essentially sent opt-out return emails that were junk back to the REAL spam sender (clever concept huh? bouncing to the person that REALLY sent the message... Of......
- The connection between Spam and Viruses After comparing MANY of these delivery failures (a fraction of what has gone out with my domain name forged I'm afraid...) They are all advertising essentially the same site (sometimes different gateways to it, but I've traced it all back to a close group of domains that have been unresponsive......
- Hamachi p2p vpn A few days back I was at grc to run a "shields up" scan on a clients machine and found reference to their Security Now podcast (Leo Laporte and Steve Gibson.) The cast was about a VPN tool called Hamachi... so I revisited and gave a read to the Security......
Related Websites - Tennis Ball Machine Advantages If you are looking for ways for you to significantly improve your techniques in tennis, then one of the best things that you can possibly to do is to invest in a tennis machine or tennis ball machine. This is a truly ideal device for anyone that is interested in......
- Finding An Online Work At Home Business Opportunity- Work At Home Marketing Online!! A lot of people are forever looking for that perfect making money online business opportunity so that they can finally quit their day job and work at home. While some can effortlessly find a good online business, others waste hours searching the net and find nothing but junk. The solution......
- Malware found in Lenovo software package Hii, I just got the news. Computer maker Lenovo is shipping a malware-infected software package to Windows XP users, according to warning from anti-virus researchers at Microsoft. The malicious file was identified by Microsoft as Win32/Meredrop, a Trojan dropper that is used to install and execute multiple malicious executables on......
Similar Posts
- Vista software compatibility concerns and license restrictions…
- More on the virus/trojan front
- McAfee Antivirus gives Windows XP Autoimmune disorder….
- Network Security guide for the home or small business network – Part 3 – Antivirus
- Wow serious VMWare vulnerability HOST system infection