Beware, Branbra.DCY - a new kind of trojan has arrived

Branbra.DCY, a trojan targeting the users of online banking in Brazil, captures the screen activities of online keyboard authentication.

Most of the banks and also some over secured web applications nowadays use the two factored authentications by implementing second level with online keyboard. This has his own limitations in terms of accessibility for disabled users and less complicated passwords but that’s not the priority of course. You can see such implementation if you are a Citibank user, however with Branbra.DCY, the security of online transactions is under threat again.

When the user connects to online banking websites after the initial authentication he is taken to the online keyboard for second level of username and password validation. While entering this username and password with keyboard, Branbra.DCY captures the screenshot of the area around mouse pointer and saves it into the multiple video file with .avi format. These video files are then sent to the users who planted the Trojans into the system.

Branbra.DCY, a prototype of a screen logger started a new school of hacking for cyber crooks over the web. More than the trojan, its the technique that is worrying the internet community and security companies now. Even though Branbra.DCY is targeting the Banking applications now, it won't be very far in the future that we will read more news of malicious code with the same technique.

Beware, Branbra.DCY - a new kind of trojan has arrived
Branbra.DCY, a trojan targeting the users of online banking in Brazil, captures the screen activities of online keyboard authentication.

MS06-040 Windows Remote Code Execution Vulnerability protection
Agnitum has reassured users of Outpost Firewall Pro that the software already protects them from MS06-040 Windows Remote Code Execution Vulnerability protection.

Cisco NAC Appliance 4.0
Cisco delivers NAC Appliance 4.0, evolves policy- compliant Network Security for Distributed Enterprises, protection enhanced for corporate LANs, VPNs and Wireless Network Access Points

Symantec launches "Confidential" for safer online transactions

New vulnerability found in Microsoft Excel 2003

Yahoo e-mail hit by Yamanner worm 6

Microsoft set to issue a dozen software patches

Microsoft releases Antigen email server antidote

Windows flaw may hack applications, start Denial of service attack

Symantec launches Norton 360

Mozilla fixes vulnerabilities in Firefox browser and e-mail client

Symantec releases patch for flaw

Windows Live Onecare from Microsoft

Symantec antivirus software has a flaw

Anonymous browsing with Firefox: Stealther Firefox extension