RSS Alerts

Share

More services

Related Links

  • Trusteer
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • HSBC reveals Swiss data theft affects 24 000 high rollers
    HSBC's Swiss banking operation – operating in an industry that is reknowned for its secrecy – has been rocked by revelations that details on as many as 24 000 of its wealthiest clients have been leaked.
  • Verified by Visa and MasterCard SecureCode security in question
    The 3D Secure method of online card transaction protection – aka Verified by Visa and MasterCard SecureCode – may not be as secure as the banks are telling us, as a team of security researchers claim there are multiple weaknesses.
  • HSBC hit by three million pound fine
    A three million pounds-plus fine imposed on three of HSBC's divisions for failing to adequately protect customer data could easily have been avoided if the banking group has made use of digital data vaulting technology, says Cyber-Ark.
  • Lloyds TSB turns fraud-detection software on staff
    Lloyds TSB has purchased pattern-recognition software from US vendor Actimize for detecting employee fraud within its retail banking operation. Use of such software is already common in financial services for spotting fraud in external transactions, such as credit card spending.
  • The Rise and Fall of Online Credit Fraud
    While Chip and Pin technology has certainly decreased in-store fraud, it has also re-directed criminals’ attention to online banks and shoppers. Stephen Pritchard investigates what methods cybercriminals are using to steal credit card data, and reports on how the finance sector is fighting back

Top 5 Stories

News

Trusteer introduces real-time malware analysis technology

16 March 2010

Trusteer, the internet authentication, encryption and security specialist, has taken the wraps off a real-time malware analysis and remediation technology for banks and other financial institutions.

The Trusteer service – Flashlight – is designed to allow banks to perform remote forensic investigations on customer's machines to detect the source of electronic fraud and so help prevent future attacks.

Central to the Flashlight service is the use of anonymous pooled data from Trusteer's Rapport browser plug-in software that is currently being offered as a free download to customers of banks such as HSBC, Natwest/RBS and the Santander Group, formerly known as Abbey National and Alliance & Leicester.

In use, Flashlight is billed as being capable of identifying the attack source on a customer' machine, gather samples, and then reverse engineer the mechanism used by the malware to commit the banking fraud.

The nett result, Micky Boodaei, Trusteer's CEO told Infosecurity, is that the findings allow banks and similar organisations to help prevent future losses, block subsequent attacks, and takedown command/control botnet servers in short order.

Boodaei, who is speaking at the e-Crime Congress event taking place in London today, says that his firm's research has revealed a particularly nasty piece of malware called Silon, which intercepts e-banking users' data sessions in real time and inserts data dynamically for maximum fraudulent results.

According to Trusteer, online e-banking fraud involving the electronic transfer of funds has been on the rise since 2007 and soared by more than 50% to reach £39 million in the first half of 2009.

Trusteer's CEO says that, in order to protect customer bank accounts from being victimised, financial institutions are faced with the daunting task of identifying malware variants, analysing them, and using the findings to mitigate future losses.

Acquiring this data from customer computers, he says, is a complex and labour intensive process, as well as being an Internet-sized challenge.

This is where Flashlight enters the frame, since it allows banks to respond to online threats in real time and take action.

"Using our Rapport plug-in allows the users' e-banking sign-on process to be secure", said Boodaei, who added it is down to the banks to make the process as secure – and as easy – as possible.

"Solutions must be developed that do not run against the user experience. Rapport and Flashlight is one such solution as the data from the users' browser – on an anonymous basis – flows back to the Trusteer and the bank, allow[ing] everyone to see when something is wrong", he explained.

Following an analysis, under Flashlight, the financial institution receives a full report on the malware, the complete source code for future reference, and detailed recommendations on how to detect and block future attacks.

In addition, says Boodaei, Trusteer reports the malware to all desktop security vendors for industry-wide protection, performs ongoing analysis of associated botnet command-and-control servers, and submits them to takedown services.

This article is featured in:
Application Security • Compliance and Policy  • Identity and Access Management

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012