
Malware in 2005
Currently, in 2005, we have been seeing a major increase in malware, primarily by
Russian and Brazilian groups.Two very active groups have been deploying variants
of Haxdoor and PWS.Banker, both using what is known as formgrabbers for stealing
data from computers. It appears to be a little-known fact that even since Berbew
from 2003, this method is the preferred one for stealing data. Formgrabbing usually
consists of either a Browser Helper Object (http://en.wikipedia.org/wiki/
Browser_Helper_Object ) being installed or an API injection
(www.codeproject.com/system/hooksys.asp ) technique that hooks into IE and
sends out data to a blind ...