13:18 Trojans in ATMs formal comments Kaspersky Lab » | |
News about the emergence of viruses in ATMs done today, a lot of noise. Habre already managed to slip references to relevant publications and websites Lenta.ru CNews, but no official comment from the companies involved in information security, we have here has not appeared. So I literally just got some clarification from Kaspersky Lab. Comments Alexander Gostev, director of the Center for Global Studies and analysis of threats Kaspersky Lab: "This malware was discovered and added to the antivirus database of Kaspersky Lab March 19, 2009 under the name Backdoor.Win32.Skimer.a. This is a Trojan that infects ATM machines of popular American manufacturer Diebold (according to unconfirmed reports, it is about the ATMs located in the territory of the Russian Federation and Ukraine). To date, no information about the real infected machines. However, we assume that their number, if any, is minimal. Infected machines are vulnerable to further action the attacker, namely: having a special access card, virus writers can withdraw all the cash that is available at the ATM, as well as access to information about all conducted through the ATM transactions of other users. The principle of contamination, given the lack of actual applications from banks, while not entirely clear. Specialists LC suggest that there may be two possible ways: direct physical access to the ATM, or access via the internal network of the bank, to which are connected ATMs. Analysis of the code of the program allows a high degree of probability suggests that its author - a citizen of one of the CIS countries. Unfortunately, the ordinary user can not independently determine the contamination of the ATM. However, it can make its owners. To avoid possible contamination, experts LC strongly recommends that all banks to verify the ATM network operated by conventional antivirus software, detecting this malware. Backdoor.Skimer.a - first malicious program aimed at infection and the existence of ATMs. We do not exclude the emergence of new malicious programs aimed at an illegitimate use of banking information and cash. » | |
|
Total comments: 0 | |