Clampi Virus | Clampi Trojan



The clampi virus is in the news in a couple places today. Surprisingly it’s in Symantec’s virus database since January and rated as a low risk. However, the sole purpose of this trojan is to monitor your Windows based computer for connections to more than 4500 different financial related sites and log any usernames and passwords used to connect. When it finds your login information, that’s then sent along to a server that the trojan or virus writer controls and then they can transfer money out of your account or accounts.


Apparently this particular piece of malware is quite well written as well, because it is fairly stealthy in it’s infection of a Windows PC, with one of the things tipping users off being an application known as PSExec to find other machines on the local network to infect.

Many of the recommendations for Business and home users run along the lines of using a dedicated machine just for your financial transactions online and to not use the same machine for browsing the internet or checking email. Unfortunately for many home users the luxury of having multiple machines is just not practical. I think the use of virtual machines are something that could be an option (although if your host machine is running Windows and infected with a key logger, then your virtual machine usage could also be at risk.) There are suggestions also about using alternative operating systems such as Mac or Linux for conducting such transactions. Unfortunately there are still some banking and finance sites that have a requirement of Internet Explorer either intentionally or through poor design.

An article from July indicates that there were around 500,000 estimated infections of this trojan, and like many it may be undergoing constant modification to evade virus detection signatures. It’s not that linux and mac are impossible to be targeted, but right now they are not and that gives you an advantage in using them currently. So, if you’re checking email, browsing the web and social networking sites on the same machine that you pay your bills it’s time to start thinking twice about the sites you visit and making doubly sure your antivirus is up to date and working. Consider even using a bootable live cd as your sandbox environment for logging in to online banking sites, that way you could leverage the same system without having to buy a computer JUST for that purpose. From what I see the key logging of the clampi virus or clampi trojan wouldn’t persist through a boot to a livecd or second operating system on the pc.

Related Posts

Blog Traffic Exchange Related Posts
  • The spammers win a round There is a company (well, unfortunately, WAS a company) called Blue Security. They had an innovative approach to stopping spam. A small download essentially sent opt-out return emails that were junk back to the REAL spam sender (clever concept huh? bouncing to the person that REALLY sent the message... Of......
  • Makers of fake security software settle lawsuit The security fix has some news today on some bogus security software makers (the wolves in sheeps clothing as I tend to think of them...) Anyway, they're settling deceptive trade practice chargers that were brought by the FTC. SpywareAssassin and Spykiller were facing a civil suit over their ads which......
  • Hamachi p2p vpn A few days back I was at grc to run a "shields up" scan on a clients machine and found reference to their Security Now podcast (Leo Laporte and Steve Gibson.) The cast was about a VPN tool called Hamachi... so I revisited and gave a read to the Security......
Blog Traffic Exchange Related Websites
  • Malware found in Lenovo software package Hii, I just got the news. Computer maker Lenovo is shipping a malware-infected software package to Windows XP users, according to warning from anti-virus researchers at Microsoft. The malicious file was identified by Microsoft as Win32/Meredrop, a Trojan dropper that is used to install and execute multiple malicious executables on......
  • Promoting Your Associate Product Sites Made Easy Merchandising can never be a stroll within the park. That’s what so much of us say. Promoting somebody else’s web site for example makes it so much harder for you to attest for the stated website. That’s how affiliate internet marketing works by way of the way. You might be......
  • Windows 7 Sales Spike to Overtake Mac OS X [/caption]Proving there is no accounting for taste Microsoft’s latest attempt at a decent operating system, Windows 7, is now running on 5% of the computers online.  The daily average of online users as measured by Internet metrics company Net Applications showed that an increase last week put Windows 7 above......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site