A new toolkit has been released in the underground circles according to the folks at Finjan Inc. who have been keeping an eye on the spreading crimeware. The new software has spread to more than 10,000 sites in the past few weeks. The Javascript based malware is generated dynamically and changes each time it is accessed in an effort to avoid detection.
Loverly.
From the press release:
Malicious Code Research Center (MCRC) has identified yet another significant new web attack — the latest in a genre of crimeware that threatens to turn highly trusted web sites into insidious traps for unwary visitors. More than 10,000 websites in the US were infected in December by this latest malware. The attack, which Finjan has designated “random js toolkit,” is an extremely elusive crimeware Trojan that infects an end user’s machine and sends data from the machine via the Internet to the Trojan’s “master”, a cybercriminal. Data stolen by the Trojan can include documents, passwords, surfing habits, or any other sensitive information of interest to the criminal.
For the rest of the story follow the link.
[tags]Malware, Crimeware, Crime Toolkit, Random JS Toolkit[/tags]
