Korgo Worm Stealing Credit Card Data
Author: Ira
SENIOR MEMBER (Member for 2 yrs.+)
Joined: 19 May 2003
Posts: 738
Location: NJ
Posted: Wed Jun 09, 2004 11:05 pm
Post subject: Korgo Worm Stealing Credit Card Data
Korgo Worm Stealing Credit Card Data
Source: United Press International HELSINKI, Finland (United Press International via COMTEX) --
A Finnish computer security firm is warning Windows users of a virus that is aggressively stealing credit card numbers and passwords. The Korgo virus launched May 22 and since then has been steadily racking up victims, the BBC reported Friday. Korgo exploits the same vulnerability as the Sasser web worm used so effectively when it struck a few weeks ago, said anti-virus firm F-Secure. In its web journal, F-Secure issued a stark warning for those infected by Korgo. "Change your passwords and cancel your credit cards. Especially the ones you've used during last week," wrote the anti-virus researchers. "This is not a joke." Like Sasser, the Korgo worm spreads around the Internet by itself. Korgo installs a key logging program that activates when users fill in forms on websites. The key logger steals password and credit card information and sends it back to its creators, thought to be a virus writing group called the Hangup Team.
View our latest credit card ratings!
Author: Guest
Posted: Thu Jun 10, 2004 10:28 am
Configure your browser to NOT store your personal information on your hard rrive and wipe it clean after every internet session. Some other tips: Stop using MS Internet products totally! Use a browser that is not the target of these hacker idiots. Persoanlly, I like Mozilla Firefox- but there are many other very good browsers out there from which to choose. Use a substitute email program rather than outlook. Even web-based free email is not more secure than Outlook. Many of these worms feed off of (and spread by) email address lists in Outlook. Don't feed the worms! Starve the worms! If MS is the target, and MS refuses to do anything other than apply bandaids after years of attacks- WHY use Microsoft products, if the outcome is that you and your finances could get hurt? It's nuts! Would you leave your front door open to burglers just because the lock vendor refuses to fix your lock????
View our latest credit card ratings!
Author: Guest
Posted: Thu Jun 10, 2004 10:30 am
Anonymous wrote:
Even web-based free email is not more secure than Outlook.
Shoul've read: Even web-based free email is now more secure than Outlook.
View our latest credit card ratings!
Author: Polonius
Credit Expert (100+ Posts)
Joined: 19 Jan 2004
Posts: 358
Posted: Thu Jun 10, 2004 5:05 pm
That's good general advice, but this particular worm doesn't spread through a browser. You're vulnerable regardless of the browser you use if you're using Win 2000 or Win XP. The worm doesn't arrive by email, so the email client you use doesn't matter either. The worm opens a back door through TCP ports 113 and 3067. The keylogger program records what you're typing and transmits the keystrokes. You block the worm by applying the Microsoft LSASS Buffer Overrun Vulnerability patch, available as part of critical updates from the Windows Update site:
windowsupdate.microsoft.com/ Or go here for the patch itself: microsoft.com/technet/security/bulletin/MS04-011.mspx
And if you REALLY want to avoid MSFT products, get a Mac.
Polonius
"Neither a borrower, nor a lender be; For loan oft loses both itself and friend"
View our latest credit card ratings!
Author: Guest
Posted: Fri Jun 11, 2004 12:32 pm
Polonius wrote:
That's good general advice, but this particular worm doesn't spread through a browser. You're vulnerable regardless of the browser you use if you're using Win 2000 or Win XP. The worm doesn't arrive by email, so the email client you use doesn't matter either. The worm opens a back door through TCP ports 113 and 3067. The keylogger program records what you're typing and transmits the keystrokes. You block the worm by applying the Microsoft LSASS Buffer Overrun Vulnerability patch, available as part of critical updates from the Windows Update site: windowsupdate.microsoft.com/ Or go here for the patch itself: microsoft.com/technet/security/bulletin/MS04-011.mspx And if you REALLY want to avoid MSFT products, get a Mac.
Thanks for your thoughtfulness in supplying those patch links. Thus, it speaks volumes to my own comment regarding Microsoft's "bandaid" approach. I really can't argue with any of your comments. I'd only add that my own approach recognizes the fact that MS is the predominant OS in the consumer market, and that while Linux or Apple may well be more secure systems for folks to aspire to, most consumers simply cannot afford to do so. Any industry leader becomes that way when the cost to switch over is prohibitive to do so. Thus is the case for consumers with Microsoft. Few can afford to replace all of their various software programs, afford to buy new hardware that will run those new systems, and take the time to learn the new systems, etc. Apple is the only one that truly has an easy transition solution. Though Linux aspires to do so, and that they are getting closer towards this goal, the fact remains today that most consumers could NOT replace their system without buying new hardware, software programs and become very confused on the operational aspects of a Linux system. In addition, many Intel PC's still cannot run Linux- regardless of which version. And, those same Linux vendors do nothing to market themselves towards helping the consumer switch. Running a Linux system aside windows from a image disk is NOT the solution. ...thus, the appraoch to (at least) stop using MS Internet software.
View our latest credit card ratings!
SENIOR MEMBER (Member for 2 yrs.+)
Joined: 19 May 2003
Posts: 738
Location: NJ
Posted: Wed Jun 09, 2004 11:05 pm
Post subject: Korgo Worm Stealing Credit Card Data
Korgo Worm Stealing Credit Card Data
Source: United Press International HELSINKI, Finland (United Press International via COMTEX) --
A Finnish computer security firm is warning Windows users of a virus that is aggressively stealing credit card numbers and passwords. The Korgo virus launched May 22 and since then has been steadily racking up victims, the BBC reported Friday. Korgo exploits the same vulnerability as the Sasser web worm used so effectively when it struck a few weeks ago, said anti-virus firm F-Secure. In its web journal, F-Secure issued a stark warning for those infected by Korgo. "Change your passwords and cancel your credit cards. Especially the ones you've used during last week," wrote the anti-virus researchers. "This is not a joke." Like Sasser, the Korgo worm spreads around the Internet by itself. Korgo installs a key logging program that activates when users fill in forms on websites. The key logger steals password and credit card information and sends it back to its creators, thought to be a virus writing group called the Hangup Team.
View our latest credit card ratings!
Author: Guest
Posted: Thu Jun 10, 2004 10:28 am
Configure your browser to NOT store your personal information on your hard rrive and wipe it clean after every internet session. Some other tips: Stop using MS Internet products totally! Use a browser that is not the target of these hacker idiots. Persoanlly, I like Mozilla Firefox- but there are many other very good browsers out there from which to choose. Use a substitute email program rather than outlook. Even web-based free email is not more secure than Outlook. Many of these worms feed off of (and spread by) email address lists in Outlook. Don't feed the worms! Starve the worms! If MS is the target, and MS refuses to do anything other than apply bandaids after years of attacks- WHY use Microsoft products, if the outcome is that you and your finances could get hurt? It's nuts! Would you leave your front door open to burglers just because the lock vendor refuses to fix your lock????
View our latest credit card ratings!
Author: Guest
Posted: Thu Jun 10, 2004 10:30 am
Anonymous wrote:
Even web-based free email is not more secure than Outlook.
Shoul've read: Even web-based free email is now more secure than Outlook.
View our latest credit card ratings!
Author: Polonius
Credit Expert (100+ Posts)
Joined: 19 Jan 2004
Posts: 358
Posted: Thu Jun 10, 2004 5:05 pm
That's good general advice, but this particular worm doesn't spread through a browser. You're vulnerable regardless of the browser you use if you're using Win 2000 or Win XP. The worm doesn't arrive by email, so the email client you use doesn't matter either. The worm opens a back door through TCP ports 113 and 3067. The keylogger program records what you're typing and transmits the keystrokes. You block the worm by applying the Microsoft LSASS Buffer Overrun Vulnerability patch, available as part of critical updates from the Windows Update site:
windowsupdate.microsoft.com/ Or go here for the patch itself: microsoft.com/technet/security/bulletin/MS04-011.mspx
And if you REALLY want to avoid MSFT products, get a Mac.
Polonius
"Neither a borrower, nor a lender be; For loan oft loses both itself and friend"
View our latest credit card ratings!
Author: Guest
Posted: Fri Jun 11, 2004 12:32 pm
Polonius wrote:
That's good general advice, but this particular worm doesn't spread through a browser. You're vulnerable regardless of the browser you use if you're using Win 2000 or Win XP. The worm doesn't arrive by email, so the email client you use doesn't matter either. The worm opens a back door through TCP ports 113 and 3067. The keylogger program records what you're typing and transmits the keystrokes. You block the worm by applying the Microsoft LSASS Buffer Overrun Vulnerability patch, available as part of critical updates from the Windows Update site: windowsupdate.microsoft.com/ Or go here for the patch itself: microsoft.com/technet/security/bulletin/MS04-011.mspx And if you REALLY want to avoid MSFT products, get a Mac.
Thanks for your thoughtfulness in supplying those patch links. Thus, it speaks volumes to my own comment regarding Microsoft's "bandaid" approach. I really can't argue with any of your comments. I'd only add that my own approach recognizes the fact that MS is the predominant OS in the consumer market, and that while Linux or Apple may well be more secure systems for folks to aspire to, most consumers simply cannot afford to do so. Any industry leader becomes that way when the cost to switch over is prohibitive to do so. Thus is the case for consumers with Microsoft. Few can afford to replace all of their various software programs, afford to buy new hardware that will run those new systems, and take the time to learn the new systems, etc. Apple is the only one that truly has an easy transition solution. Though Linux aspires to do so, and that they are getting closer towards this goal, the fact remains today that most consumers could NOT replace their system without buying new hardware, software programs and become very confused on the operational aspects of a Linux system. In addition, many Intel PC's still cannot run Linux- regardless of which version. And, those same Linux vendors do nothing to market themselves towards helping the consumer switch. Running a Linux system aside windows from a image disk is NOT the solution. ...thus, the appraoch to (at least) stop using MS Internet software.
View our latest credit card ratings!
posted by CardRatings.com at 11:24 AM
0 Comments:
Post a Comment
<< Home