Bekker's Blog

Blog archive

A Scary Tale About Coreflood

If you bank online, check out the story about a security briefing this week on the Coreflood Trojan.

Researcher Joe Stewart of SecureWorks Inc. got access to a command and control server used to collect data from a botnet deployed by a Russian crime group.

Stewart shared some statistics at the Black Hat security conference in Las Vegas. Among the findings: 8,485 compromised bank accounts, 3,233 credit card accounts and more -- all collected in six months.

Here's the scary part. Coreflood is an older, well-known Trojan, but it's still doing massive damage. "In the case of Coreflood, you've got people infected who didn't do anything wrong," Stewart said. So users didn't necessarily visit suspect Web sites, let their anti-virus lapse or commit other computing no-nos.

Do you feel like current best practices in the industry are enough to protect your customers? Let me know at [email protected].

Posted by Scott Bekker on August 07, 2008 at 11:58 AM


Featured

  • The 2020 Microsoft Product Roadmap

    From the next major update to Windows 10 to the next generations of .NET and PowerShell, here's what's on tap from Microsoft this year.

  • 2020 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss. (Now updated with COVID-19-related event changes.)

  • Curvey Stone Steps Graphic

    Microsoft Makes Run at 5G, Edge Computing with Azure Edge Zones

    Microsoft is promising to enable new edge computing scenarios for partners and developers with Azure Edge Zones, which became available as a preview this week.

  • Microsoft's Entire 2020 Event Lineup Going 'Digital-First'

    In response to concerns about the ongoing coronavirus (COVID-19) pandemic, Microsoft is transitioning all of its big conferences in 2020 to be online only.

RCP Update

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.