Last week there was an article in the paper about some "super virus" that has been developed, that once downloaded onto your computer, allows someone to clean out your bank account. I realize that depending on your browsing habits you can be at greater risk,....but this article quoted folks from Symantec, about the danger and sophistication of this virus. Any thoughts or insights about this from others in the forum? Cheers!

If you're talking about the keylogger, then yes, there's always a risk no matter when you access the web. Just like being around sick folks at work you have to take precautions: 1. Install good anti-virus/adware/malware software (including a firewall) and make sure you keep them active and up-to-date. 2. NEVER, NEVER reply to (or even open) an e-mail from an address you don't recognize and never download an attachment (or even shareware from a site) without giving it a scan. Even better: switch to a popular web-based e-mail (such as Yahoo mail) where spam-blocking and scanning are built-in to a degree. 3. Apply all updates and service-packs/patches (something I'm woefully lacking of doing). 4. Stop using Internet Explorer and surf with something less "infectible" such as Firefox, Opera, or something else from this list: http://en.wikipedia.org/wiki/List_o... Also, ratchet-up the security on whatever browser you use (such as turning of java or java-script). More drastic: 5. Stop using Windows altogether and switch to another O/S. 6. Stop using the internet (yeah, right). Short of the latter, there's always still a chance of catching something from somewhere; you're best bet is to use a combination of the above (shy of #6)... Personally, to me, this seems to be a much bigger concern: http://www.pcworld.com/article/id,1... And no, I've not been watching Die Hard 4 too much...

I think you will find the following site to be of interest. http://www.firewallleaktester.com http://www.firewallleaktester.com/t... If you are only using windows firewall...expect windows F-W to fail. You can also test to see if any keys on your machine are being logged. Hmmm. If you do have a keylogger...be sure to have all dictionary's in all known languages sent to your keyboard and then out to the remote computer collecting the information. They will love it. LOL!

Your bank account can't be cleaned out just because the virus is on your computer... you'd actually have to be using the computer for your online banking... What newspaper was this article in? Or, can you copy and paste the exact text? There are all kinds of ways that personal data can be extrapolated from a computer, but not without a little help from the computer operator.. :) Life's more painless for the brainless.

Not sure, but I think this is what he means: http://news.digitaltrends.com/news/... According to this, Gmer.net has apparently got something to detect it now...

I believe this may be what he is referring to. Silent banker http://www.symantec.com/enterprise/...

Hi Folks; The article was on the front page of the Thursday, Jan 17th edition of the Vancouver Sun,....one of our two daily newspapers. The Headline was "Cyber Attack Hits Banks Websites - Sophisticated virus can clean out accounts without owners suspecting." So it kind of grabs your attention. The name of the virus is called "Silentbanker",...and the article quotes Symantec. Here is the article as requested by Jennifer: January 17, 2008 VANCOUVER SUN (FINAL) PAGE: A1 / FRONT (NEWS) Cyber attack hits bank websites Sophisticated virus can clean out accounts without owners suspecting Gillian Shaw, Vancouver Sun In what is being billed as one of the most sophisticated cyber attacks to hit the Internet, a virus has been released that gets between computer users and their banking websites, giving thieves free rein to drain accounts and wreak financial havoc on their victims. Dubbed the "Silentbanker," the virus is a Trojan horse computer users may unknowingly download by simply browsing the Internet. The first sign it's at work may be a bank notification warning their client has been a victim of fraud. More than 400 banks -- including some in Canada -- have been targeted worldwide by the virus, which operates in many languages, said Symantec, a global security company tracking the progress of the Trojan. "I'd have to say it is one of the most sophisticated we have seen. What makes it more dangerous is it seems to be staffed by professional software developers," said Al Huger, vice-president for security response and security services at Symantec. "They are writing this and maintaining it just like they would a piece of software you might buy. There is a lot of money on the line for them. It is certainly organized." Unlike conventional cyber-banking frauds -- in which bank clients are steered to a bogus website masquerading as their own institution's online site -- Silentbanker uses the genuine bank website and is able to manipulate the user's account without the client's knowledge. Payments are steered into a hacker's account, or cleaned out altogether, before transactions can be encrypted. It can also be used to steal credit card information and passwords. When a banking client signs on to their banking website, the hacker is a silent third party, remaining completely hidden and making no changes at all to the site the banking client is seeing. All the functions, from transferring funds to paying bills or checking credit card balances, remain the same and continue to work, thereby giving the user no cause to suspect they've been compromised. "What they are doing is they are already on your computer, and when you type on your computer [the hackers] are sitting between your keyboard and the bank," said Huger. "They are intercepting everything you send to your bank and everything your bank sends to you. It is called a man-in-the-middle attack." Huger said the current attack has been under way for about four days, and while he said Symantec has seen it try to infect thousands of its customers, the company's security software has stymied the attempts. A Symantec security team member said the virus is not just targeting large American banks, but financial institutions around the world, particularly in Europe. Computer users who don't have up-to-date anti-virus security software installed, or who haven't updated their web browser to fix flaws that are allowing the Trojan to proliferate, are particularly open to attack. "[Silentbanker] sits on the website, and unbeknownst to you it downloads to your system," said Huger, who added the hackers behind Silentbanker are probably also trying to send the virus out via e-mail. Huger said the download could originate from many legitimate websites. "It is the complete gamut -- from gaming sites to porn sites to home-craft sites," he said. "Whoever is doing this is actually breaking into a lot of legitimate sites and placing it there." The Bank of Montreal said Wednesday it had not heard of the virus threat, but would be investigating. Calls made to other major Canadian banks were not returned. gshaw@png.canwest.com WHAT TROJAN.SILENTBANKER IS CAPABLE OF: - When the virus installs itself, the web addresses for 400 different banks are downloaded to the victim computer. - When the user tries to visit his/her bank's site, the virus impersonates the real customers by sending the attacker's account details instead. - It appears to the user to be a normal transaction, but your money is being stolen. - The virus steals passwords for file transfer tools, e-mail, and storage. - The addresses of hundreds of other legitimate websites that you might visit are illegitimately placed in your computer. - Hundreds of pornographic websites may be shown to you (so the attacker can make money from the referrals). - If you think you have found and removed the virus, it may still be functioning because it has changed your Internet account's domain name server (DNS) settings. - A user's DNS settings can be changed (to 85.255.116.133 or 85.255.112.87 - although Trojan.Silentbanker is elusive and this information may already be out of date). - Your computer can be turned into a web server to further enable the virus's illegal activity.