Zitmo 報告者:劉旭哲
What is Zitmo ? – Zeus in the Mobile What is Zeus ? – a Trojan horse that steals banking information by keystroke logging
August, a bank lost one million dollars in UK because of Zeus Less than two months, Fortinet found Zitmo
How to Phishing Web Victim input mobile number and brand SMS with malicious package – a Symbian package 、 a BlackBerry Jar Create NumberDB.db – tbl_contact : index, name, descr, pb_contact_id. – tbl_phone_number : contact_id, phone_number – tbl_history : event_id, pn_id, date, description, contact_info, contact_id – Could use some SQL query
After installing, send a SMS to someone… Therefore, your SMS will be recorded… The malware seems to be able to answer ’set admin’ – anyone may be able to take control of it.
So what Bank Authentication – Two Factor Authentication will be broken. Is investigating
reference _detail.aspx?tv=11&aid= _detail.aspx?tv=11&aid= online-bankings-two-factor-authentication-defeated../ online-bankings-two-factor-authentication-defeated../ zeus-attack-targets-mobile-banking-authentication/ zeus-attack-targets-mobile-banking-authentication/