On TechRepublic: Why VISTA HATERS will love Windows 7
BNET Business Network:
BNET
TechRepublic
ZDNet
36 TalkBacks

By Dan Ilett
Posted on ZDNet News: Feb 10, 2005 8:11:00 PM

Microsoft is investigating a piece of malicious code that targets the recently released beta version of its AntiSpyware product.

On Wednesday, antivirus company Sophos reported a new Trojan horse, dubbed "Bankash-A," which suppresses warning messages displayed by Microsoft AntiSpyware and deletes all of the files in the program's folder. The Trojan also steals passwords and online-banking details from Windows users.

"Microsoft is actively investigating new public reports of a criminal attack, known as the 'Bankash-A Trojan'," the company wrote in an e-mail statement. "Microsoft is not aware of any significant customer impact resulting from the Trojan. Microsoft continues to recommend customers evaluate the Microsoft AntiSpyware beta and encourage customers to follow the three steps to help keep your PC protected (at) www.microsoft.com/protect."

The software giant is also offering free support to victims of the Trojan.

Related story
Third buy's a charm for Microsoft?
Spending spree could position the company as a player in the enterprise security market.

"Customers who believe they may have been affected should contact Product Support Services," the company wrote. "Product Support Services in North America can be contacted for help with security update issues or viruses at no charge by using the PC Safety line (1-866-PCSAFETY). International customers can receive the same level of support by using any method found at this location: http://support.microsoft.com/."

Microsoft added that people should consult their local law enforcement agencies if they have been infected by the Trojan.

"Customers who believe they have been attacked should contact their local FBI office or post their complaint on www.ifccfbi.gov. Customers outside the U.S. should contact the national law enforcement agency in their country."

The Trojan targets users of U.K. online banks such as Barclays, Cahoot, Halifax, HSBC, Lloyds TSB, Nationwide, NatWest and Smile.

On Wednesday, Sophos said the Trojan was the first piece of malicious ware to target the anti-spyware product, which is still only available in a test version.

"As Microsoft's product creeps out of beta and is adopted more by the home user market, we can expect to see more attempts by Trojan horses, viruses and worms to undermine its effectiveness," said Graham Cluley, senior technology consultant for Sophos.

Dan Ilett of ZDNet UK reported from London.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 36 Talkback(s)
One product can't do it all.
It really is that simple. For example, an AV product wont't detect an intrusion. Likewise a spyware product won't detect a virus. This is why you have blended threats now. Software packages like S... (Read the rest)
Posted by: htotten Posted on: 02/13/05 You are currently: a Guest | | Terms of Use
They should have probed their own stuff first  htotten | 02/10/05
Re: They should have probed their own stuff first  ReFoRMaT | 02/11/05
are you kidding?>  linuxoverwindows | 02/12/05
so much for XP client protection....  crocd | 02/10/05
you say this like...  linuxoverwindows | 02/12/05
Welcome to the club that  Nullifidian | 02/10/05
When applications load up in Windows,  bjbrock | 02/10/05
It may schedule a second batch delete for the next boot  Hugh Jass | 02/10/05
Try this  Jeff Spicoli | 02/10/05
I Pretty Much Live By Hijack This  OptimusPrime | 02/10/05
I just saved some time using one of these...  Anton Philidor | 02/10/05
Killing a running process/program ...  GLMarx | 02/11/05
here is the "code" lol  JoeMama_z | 02/11/05
it can be done...  linuxoverwindows | 02/12/05
This is the response to the story  Squawkbox | 02/10/05
You dumped spybot?  htotten | 02/10/05
Yep  Squawkbox | 02/10/05
MS AS isn't enough  alterego_z | 02/11/05
not to mention av software  linuxoverwindows | 02/12/05
another tool to consider  ac2_z | 02/11/05
Thanx for the info. I'll check it out  htotten | 02/12/05
"I hope MS plugs this problem quickly"  linuxoverwindows | 02/12/05
The FBI will not be pleased.  Anton Philidor | 02/10/05
Re: The FBI will not be pleased.  ReFoRMaT | 02/11/05
how many people are actually...  linuxoverwindows | 02/12/05
Windows security  zijiang | 02/10/05
thats only because...  linuxoverwindows | 02/12/05
Unless MS pulls a miracle Windows is doomed ...  GLMarx | 02/11/05
Doomed?  PA-ITGuy | 02/11/05
Microsoft left out one step  toadlife | 02/11/05
Re: Microsoft left out one step  ReFoRMaT | 02/12/05
M$ should buy Norton  htotten | 02/12/05
blended threats...  linuxoverwindows | 02/12/05
One product can't do it all.  htotten | 02/13/05
your step 5 is perfect  linuxoverwindows | 02/12/05
or use firefox... but seriously:  linuxoverwindows | 02/12/05

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

Meet Doc

  • Here to help you with your Document Management Needs
  • Doc is an enigma. Born to a Russian ballerina and a German electrical engineer, he grew up in various locations in the United States. He’s seen the insides of more brands, versions, and generations of printer and printer-related hardware than almost anyone.
  • To learn more about this mysterious figure check out his blog on ZDNet and his Workspace on TechRepublic. You’ll be glad you did.
  • Produced by
    ZDNet and
advertisement
Click Here