'OddJob' Trojan robs online bankers
Summary
A new Trojan dubbed 'OddJob' is stealing people's money by taking over their online banking sessions after they think they've logged off.
Topics
A new Trojan dubbed 'OddJob' is stealing people's money by taking over their online banking sessions after they think they've logged off.
The Trojan, which targets Windows-based computers, is being used by criminals in eastern Europe to steal money from accounts in the United States, Poland and Denmark, Amit Klein, chief technology officer of Trusteer, writes in a blog post on Tuesday.
Klein said in an email that he could not identify the banks being targeted or provide an estimate on the number of victims."It is early days for this malware," he said. "It appears to be a work in progress, so we expect the code to become more sophisticated over time."
For more on this story, read Online banking hit by thieves on CNET News.
Just In
Call me a troll, but if i buy your operating system, i install all updates, and still that os is vulnerable, shouldn't the company from whom i bought it be held responsable for any loses that may occur from using it's os? Yes, i know, everyone using windows agreed in the EULA that they don't expect to be compensated in case of any damages with more than the value of the software (article 26 i think), but still, if your computer explodes and injures you, you don't expect to be compensated with only the value of that computer.
@d.marcu
If I lock my front door and someone breaks in and steals my plasma, should the lock company be held responsible? Or that ADT system that was active. Real world situations shouldn't come with compensations from random companies.
If I lock my front door and someone breaks in and steals my plasma, should the lock company be held responsible? Or that ADT system that was active. Real world situations shouldn't come with compensations from random companies.
@Anti Fanboy, but what happens if you pay for a security company to protect your house, and when the alarm goes on they don't come fast enough and everything in your house gets stolen. They promised you protection and failed. Shouldn't they pay for that? If i was promised a secure os, i expect that, if not i should be compensated.
@d.marcu
You probably got that OddJob trojan because you weren't wearing one when you visited that questionable website. It's not the O.S.'s fault. You're the one thats suppose to have the brain, not the computer.
You probably got that OddJob trojan because you weren't wearing one when you visited that questionable website. It's not the O.S.'s fault. You're the one thats suppose to have the brain, not the computer.
@Alienwilly, oh my f*** god, you people still try to find excuses with the old porn story? That's really pathetic and old. Any website can be hacked to distribute malware. Wasn't facebook hacked and accounts hyjacked to send false messages that directed users to malware infected sites? And there are viruses that attack random IP addresses in order to find 0 day windows bugs? Or a link in a instant message from someone who has it's pc infected? Should i continue? And i did not get infected with oddjob because i run FreeBSD.
... because the majority of users are stupid! After all, they bought on price initially so it makes sense that they: 1) Don't update software; 2) Leave their WiFi wide-open; 3) Don't regularly scan their computer; 4) Visit porn and hacker sites; 5) etc., etc.
@Gr8Music
First of all, most porn websites are clean. I go to TONS daily and don't get any viruses on my machine
Second of all, most people DO update their software except the people with no internet connection.
Third, you are right.... a lot of people don't regularly scan their computer.
On the other things, I have to say those don't affect whether you get a virus or not very much.
First of all, most porn websites are clean. I go to TONS daily and don't get any viruses on my machine
Second of all, most people DO update their software except the people with no internet connection.
Third, you are right.... a lot of people don't regularly scan their computer.
On the other things, I have to say those don't affect whether you get a virus or not very much.
PLEASE, people. Learn to spell! My god, I can feel my IQ dropping by the second every time I scroll down to read ZDNet comments...
@d.marcu
Okay, troll.
No - I think you are wrong in your assumtions. Why don't you, and other people start taking responsibility for thewir own actions ? Time to stop the blamestorming, all the blank check suing going on, and freaking relax for God's sake. Will the bank not credit your account immediately if there is fraudulent activity ? If not, you need to change your bank, D. Marcu. If you DON'T update your system regularly, and you don't use a trusted anti-virus, and you surf the kind of sites where viri dwell, YOU DESERVE IT, PERIOD. Grow a pair, and take responsibiltiy - I'm tired of paying out the A$$ in insurance fees, hellish markups on crap because pansies whine about crap, and then sue someone. GROW UP.
Oh, but wait, there is MORE ! I read on to see that you are an angelic FREEBSD user, so of course you are above everyone and everything. If it doesn't affect you, why get on here and whine ? Puh-leeze. GET. A. LIFE.
Okay, troll.
No - I think you are wrong in your assumtions. Why don't you, and other people start taking responsibility for thewir own actions ? Time to stop the blamestorming, all the blank check suing going on, and freaking relax for God's sake. Will the bank not credit your account immediately if there is fraudulent activity ? If not, you need to change your bank, D. Marcu. If you DON'T update your system regularly, and you don't use a trusted anti-virus, and you surf the kind of sites where viri dwell, YOU DESERVE IT, PERIOD. Grow a pair, and take responsibiltiy - I'm tired of paying out the A$$ in insurance fees, hellish markups on crap because pansies whine about crap, and then sue someone. GROW UP.
Oh, but wait, there is MORE ! I read on to see that you are an angelic FREEBSD user, so of course you are above everyone and everything. If it doesn't affect you, why get on here and whine ? Puh-leeze. GET. A. LIFE.
@SenKat, that's because i had my share of crap from the mighty M$, those days in school when i was forced to run windows for different projects, and instead of doing the work, i had to reinstall windows and all kind of maintenance crap. It's over now for me, but I'd still love to see them pay for all that BS.
@d.marcu
what a trojan is. Hint: You bring it in yourself believing it was something else. Please learn some history, ok?
This is not about any OS being vulnerable. Any OS which allow you to install software (i.e not walled gardens) are "vulnerable" to the device between the keyboard and the chair.
Sheesh! I thought FreeBSD users were supposed to be tech savvy. You are obviously the exception to the rule.
what a trojan is. Hint: You bring it in yourself believing it was something else. Please learn some history, ok?
This is not about any OS being vulnerable. Any OS which allow you to install software (i.e not walled gardens) are "vulnerable" to the device between the keyboard and the chair.
Sheesh! I thought FreeBSD users were supposed to be tech savvy. You are obviously the exception to the rule.
@d.marcu
You are missing the fact that these OS's are as secure as the people in question can make them, and it is telling that with ALL the pron sites I surf..... I've only gotten a virus when I have been stupid enough to download one myself thinking it was a codec pack or something I wanted.
In fact, more often the virus alerts on my machine are MISTAKEN alerts, like a game trainer being diagnosed as a virus.
You are going to have to realize that ALL OS's have flaws in them, and get used to that fact. Otherwise, stop using computers period.
You are missing the fact that these OS's are as secure as the people in question can make them, and it is telling that with ALL the pron sites I surf..... I've only gotten a virus when I have been stupid enough to download one myself thinking it was a codec pack or something I wanted.
In fact, more often the virus alerts on my machine are MISTAKEN alerts, like a game trainer being diagnosed as a virus.
You are going to have to realize that ALL OS's have flaws in them, and get used to that fact. Otherwise, stop using computers period.
"which targets Windows-based computers"
Mac based macs may continue to party on.
Mac based macs may continue to party on.
@HollywoodDog
until hackers get sick and tired of arrogant mac users and start coding malware for macs. Security by obscurity isn't security at all
until hackers get sick and tired of arrogant mac users and start coding malware for macs. Security by obscurity isn't security at all
@KBot Yeah, and you've been saying that load of crap for years and it hasn't happened.
Windows coders aren't smart enough to code viruses for Macs, they are all bumbling retards who code holes the size of a mack truck into their programs.
Windows coders aren't smart enough to code viruses for Macs, they are all bumbling retards who code holes the size of a mack truck into their programs.
@KBot writes, “ Until hackers get sick and tired of arrogant mac users and start coding malware for macs.”
It appears obvious that you are referring to yourself. Is that a threat? Are you even capable?
It appears obvious that you are referring to yourself. Is that a threat? Are you even capable?
@KBot
Taking a notion that's likely come from the unix security world (obscurity) and using it against unix in general is simply laughable.
Apple based their OS on the same code that Linux, OpenBSD and FreeBSD have (the last two rightly stuck closer to their roots, especially OpenBSD) . They have inherited real security from a professional OS and have the scrutiny of the whole world, not including the closed apple GUI, which is the most dangerous part. This means that not only would malware writers have to raise their game and also do more work. The kind of malware that gets found on windows would never last long in the field on Unix-like systems, because it's generally rather simple malware. Firefox is Opensource and has the fastest time to patch record. Microsoft and programs running on windows consistently have the worst measured in years rather than hours.This means the ROI would be too low, primarily because of REAL security. If they get locked out just find another way in. It's more about the bad guys fighting over control of your windows box than whether they get in. They even patch it to keep others out and fail time and time again, just like you.
Taking a notion that's likely come from the unix security world (obscurity) and using it against unix in general is simply laughable.
Apple based their OS on the same code that Linux, OpenBSD and FreeBSD have (the last two rightly stuck closer to their roots, especially OpenBSD) . They have inherited real security from a professional OS and have the scrutiny of the whole world, not including the closed apple GUI, which is the most dangerous part. This means that not only would malware writers have to raise their game and also do more work. The kind of malware that gets found on windows would never last long in the field on Unix-like systems, because it's generally rather simple malware. Firefox is Opensource and has the fastest time to patch record. Microsoft and programs running on windows consistently have the worst measured in years rather than hours.This means the ROI would be too low, primarily because of REAL security. If they get locked out just find another way in. It's more about the bad guys fighting over control of your windows box than whether they get in. They even patch it to keep others out and fail time and time again, just like you.
@KBot
Go for it, I've got a Mac, here's my IP 127.0.0.1, might I suggest a deltree C: to delete all my files.
Go for it, I've got a Mac, here's my IP 127.0.0.1, might I suggest a deltree C: to delete all my files.
@kevlar700: They have inherited real security from a professional OS and have the scrutiny of the whole world, not including the closed apple GUI, which is the most dangerous part.
Like it or not UNIX and Windows share more in common wrt security than not.
Also take note the article discusses a trojan and not some other form of malware.
Like it or not UNIX and Windows share more in common wrt security than not.
Also take note the article discusses a trojan and not some other form of malware.
@alsobannedfromzdnet: Go for it, I've got a Mac, here's my IP 127.0.0.1, might I suggest a deltree C: to delete all my files.
Why aren't you posting the public reachable address?
Why aren't you posting the public reachable address?
@Ron, it hasn't happened because Windows PC's are STILL the most used out there for consumers, who are a lot easier to hack and steal from than corporations in most cases.
Like they are going to focus on an OS that is run by 1% of people when Windows is 98%+ of computer users at home? Hell no!
Like they are going to focus on an OS that is run by 1% of people when Windows is 98%+ of computer users at home? Hell no!
@HollywoodDog They attack Windows-based computers because there aren't enough Macs to make it worth their time. Besides Mac users don't have any money, they already spent it all buying Apple products.
@jsanko
Not quite.... I have to admit that Mac users usually make more than Windows users, but they fit into the 'more money than brains' category most times.
Not quite.... I have to admit that Mac users usually make more than Windows users, but they fit into the 'more money than brains' category most times.
@HollywoodDog because criminals know Mac owners have no money left to steal; Apple has already robbed them!
All apple users have already been hit by a virus. It's called iTunes.
Why does every single post on ZDNet always turn into a playground battle of Apple vs. Microsoft? No matter what you build there will always be some way around it, and I'm not just talking about computers. Can we all take our Ritalin now and get back to the subject at hand?
@altREPUBLIC
True, every topic here are being converted into an OS war.
It's always "mine is better/bigger/beautiful than yours", as predicted by psychology books.
True, every topic here are being converted into an OS war.
It's always "mine is better/bigger/beautiful than yours", as predicted by psychology books.
It's not difficult to minimize security issues with online banking. If you still wan't to use your beloved windows you put the browser in the sandbox, use a limited account for that, never use the normal keyboard but the screen-Keyboard to input your passwords and to not save these passwords should be naturally. The best would be to make online banking with a linux live system, that's what i recommend for all others, who can disclaim on windows for 10 Minutes a day.
...article: A trojan. According to the unofficial ZDNet forum rules trojans are of no concern as they're not a failing of the OS.
If online banking sessions are compromised, its still not easy to transfer to other bank accounts as:
1. the recipient can be easily traced and apprehended by authorities
2. the transaction can be easily reversed by the bank
3. all withdrawals have a limited amount daily
4. banks usually verify if the transaction was legit thru phone, sometimes within 2 hours of suspicious transaction
for protection, its best to transact thru ATM or human teller over the counter.
1. the recipient can be easily traced and apprehended by authorities
2. the transaction can be easily reversed by the bank
3. all withdrawals have a limited amount daily
4. banks usually verify if the transaction was legit thru phone, sometimes within 2 hours of suspicious transaction
for protection, its best to transact thru ATM or human teller over the counter.
@Martmarty: I've transferred tens of thousands of dollars between accounts at different banks and not once did I receive a voice call. Perhaps because the accounts were routinely used for smaller transactions over a period of time but I wouldn't count on a verification phone call unless there was some reason to suspect fraud.
@ye
Probably differs between banks.
Check your T&C's and you can ask your bank if they provide such facility.
Probably differs between banks.
Check your T&C's and you can ask your bank if they provide such facility.
Kbot,
Are you saying that FreeBSD, Macs, and other none Windows OS's, ARE NOT VULNERABLE TO TROJANS?
Are you saying that FreeBSD, Macs, and other none Windows OS's, ARE NOT VULNERABLE TO TROJANS?
@Windows: Your OS is swiss cheese. period.
@Apple: Who needs to pay twice as much for a computer? And buy music you can't play anywhere else?
Linux = Freedom & security.
@Apple: Who needs to pay twice as much for a computer? And buy music you can't play anywhere else?
Linux = Freedom & security.
@ndurbin001
What's Amarok for?
iTunes music has been DRM free for a few years now, maybe you should get with the times.
What's Amarok for?
iTunes music has been DRM free for a few years now, maybe you should get with the times.
@kevlar700
You make a good point about Open Source. The thing is MacOS-Unix is NOT open source. Unix has been a proprietary operating system since 2002. Granted it is more secure than Windows.
However, more to your point, Linux IS open source. Using the logic that open source software allows for quicker updates and better security...Apple may be more at risk than Linux because Linux can be fixed by experts in the open source community where Apple-OS cannot.
As long as any company holds a death grip on the source code no independent group/programmer can really validate its security until the flaws are exploited in the real world.
You make a good point about Open Source. The thing is MacOS-Unix is NOT open source. Unix has been a proprietary operating system since 2002. Granted it is more secure than Windows.
However, more to your point, Linux IS open source. Using the logic that open source software allows for quicker updates and better security...Apple may be more at risk than Linux because Linux can be fixed by experts in the open source community where Apple-OS cannot.
As long as any company holds a death grip on the source code no independent group/programmer can really validate its security until the flaws are exploited in the real world.
@ndurbin001: Granted it is more secure than Windows.
How to hack a nix box: h_ttp://www.securitytube.net/video/607 If you download third party sources you are definitely at risk. Nothing can protect you if you install malicious code from a 3rd party source. Linux has not been hacked at pwn2own since 2007 by my recollection. h_ttp://en.wikipedia.org/wiki/Pwn2Own. MAC and Windows get hacked every year.
Regardless of what anyone says or does there is a time lag between a virus coming on line and the signature file update. It may be a day it may be several. If one happens to get caught in this period one is simply out of luck.
So far as the banking goes if your bank's server itself is compromised what is one to do? The banks should be require to recompense.
So far as the banking goes if your bank's server itself is compromised what is one to do? The banks should be require to recompense.
Join the conversation!
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
Vendor Showcase
Facebook Activity
