Trojan Bicololo threatens users at MySpace and Classmates
The company Eset warns of the growing activity of the Trojan Win32/Bicololo, aimed at the Russian-speaking Internet users. Win32/Bicololo - Trojan whose purpose is to steal your personal information. Experts have found increased activity of the spread of this threat - it is distributed under the guise of links to the image files to the standard extension. Jpg.
When you activate such a link, instead of opening the image being downloaded a malicious file. Getting on the user's computer, the malware modifies the hosts file and registers it in the IP-address of the attacker's phishing sites. If you try to go to the legitimate site, the user is automatically redirected to his fake counterpart. Win32/Bicololo.A The modification aims to personal data of users at MySpace and Classmates (total number of accounts exceeds 400 million), as well as the owners of the mail on the service Mail.ru ( the number of users exceeds 30 million people).
Addresses precisely these portals, including addresses of mobile versions of sites, the program registers in the file hosts. All information entered by users on fake resources automatically goes to the attackers. It is worth noting the high quality fake pages - so that a phishing site, masquerading as main page Vkontakte, differs from the original only unable to change the language or the secure https-connection.
.jpg)
