PandaLabs has reported the appearance of LdPinch.ZO, a new, dangerous trojan aimed at stealing users’ confidential data. This malicious code reaches systems attached to emails or hidden in Internet downloads. When run, it opens the Windows Explorer displaying pictures with sexual content. These pictures aim to distract the target user’s attention while the trojan is dropping a file onto the system. This file is designed to steal passwords, login details, telephone numbers for dial-up connections, etc.
LdPinch.ZO gathers this information from browsers (FireFox, Mozilla, Internet Explorer), FTP clients ( CuteFTP, SmartFTP), instant messaging programs and others.
The trojan sends all this information to its creator via email, who can then use it for fraudulent purposes: theft of banking data, confidential information, etc.
“Corporate espionage is just one of the multiple uses that this type of Trojan can have. Companies keep confidential information in their computers or email accounts. Thanks to malicious code such as LdPinch.ZO, a cyber-crook could get this data and sell it to a company’s competitor, or use it in their own benefitâ€, says Luis Corrons, Technical Director of PandaLabs.
LdPinch.ZO opens a port through which an attacker can access a command interpreter and use it to run commands on the compromised computer and control it remotely.
If the firewall warns the user that there is a suspect Internet connection, Ldpinch.ZO can simulate clicking OK to continue accessing the Web and stealing information.
Panda Software offers Malware Radar to corporate users. This is a new, automated malware audit service, which detects the threats that slip past traditional solutions. This innovative solution responds to the problem of the spectacular growth in the amount of malicious code in circulation that is not detected by existing anti-malware products.
Free trials of Malware Radar, as well as the full product, are available online from http://www.malwareradar.com.
Users can also use TotalScan, a new online malware scanner with exceptional detection capacity. It detects far more threats than traditional antiviruses: over 700,000 viruses, spyware, trojans… and other unknown threats. It updates against some 2,000 new threats every day. TotalScan is available at http://www.pandasoftware.com/totalscan/
They can also use the NanoScan beta (www.nanoscan.com), an online scanner that detects active malware on computers in less than 1 minute.
