It’s scary to think of the new methods hackers can use to acquire data from you. Take this evolved trojan, for example. Known as Gozi, not only is it equipped with a keylogger, but it also has the potential of stealing data from protected SSL streams. So, even though a site looks (and even is) legitimate, Gozi will be able to acquire inputted data to be returned to the malware host. While the keylogger may have a significant role in how this is done, it’s scary to think that data can be acquired even though protected SSL Streams.

A new variant of the Russian Trojan Gozi is circulating on the Web, this time armed with a keylogging function and the ability to scramble itself so it is difficult to detect by anti-virus software.The Trojan is believed to have been spreading since April 17. Like the original, which was discovered earlier in 2007, the new version of Gozi steals data from encrypted SSL (Secure Sockets Layer) streams.[more]

Tags: Malware