1,000 Aussies caught in NAB phishing attack
Print storyReminder to keep patches up to date
Posted in Software & Security, 19th June 2006 10:45 GMT
Free whitepaper – The future of SaaS and IT infrastructure management
A phishing email claiming that The National Australia Bank (NAB) is bankrupt has caught more than 1,000 of the bank's customers in its net.
The email warns the bank's customers that NAB might be bankrupt. It claims the bank's ATMs are not working and that people are starting panic withdrawals. It invites them to click on a link that will provide them with more information.
You won't be surprised to learn that this link in fact downloads a Trojan onto the hapless banker's machine. This steals their bank login details and password when they follow the rest of the emailed "advice" to go online to check their balance.
Websense Australia manager Joel Camissar told IDG that the code monitors computer activity until the dupe tries to log into their bank. At this point it launches a phoney pop-up login window, which captures the user's information.
The code exploits a well-known flaw in IE to do its dirty work, and is a variation of the Banker virus, discovered by Websense in early April. Microsoft issued its patch shortly afterwards. Firefox users might also be vulnerable, according to reports.
Camissar added: "People have to be silly to believe the National Australia Bank is bankrupt."
The NAB says customers who have clicked on the link should call the bank's security line, where they can check on the integrity of their accounts. It has also sent out an email to its customer base reminding them to be careful about responding to emails. ®
Essential archive requirements for eDiscovery
Image spam: the threat returns
Jump start your Application Security initiatives
The shortcut guide to managing certificate lifecycles
Sign up, sign up for The Register IT security newsletter
Former top Sun exec mourns end of a franchise
Win an HTC Touch Diamond2!
Disties braced for autumn reseller collapses