nProtect Secures Large Japanese Banks hit with New Variant of Ramnit Worm

Share Article

nProtect Online Banking and Payments Security for Web Fraud and Identity Theft Prevention

News Image

nProtect, Inc., a global leader in Internet security solutions, announces that a new variant of the Ramnit Worm has attacked Japan’s largest banks. The Ramnit worm, which first surfaced in 2010, captures data from web sessions and allows hackers to use the information to make fraudulent account take-overs by spreading from PC to PC without the need for e-mail or malicious websites.

What’s interesting about the new Ramnit worm is it shares close characteristics to Zeus and SpyEye. Ramnit was not originally designed for stealing financial information. However, since the release of the Zeus source code, it appears that hackers have developed a hybrid version of Ramnit and Zeus.

The new hybrid malware has the Ramnit worm’s capability of infecting PCs without a vector and Zeus’ ability to capture account information using Man-in-the-Browser (MitB) web injection module. This new variant of the Ramnit worm can be devastating for online users, especially during online banking sessions.

nProtect was first notified by Japanese banks of suspicious online threats and the nProtect Response Team quickly dispatched the latest version of nProtect Online Security (NOS) to detect and remove the malware. nProtect ensured the banks that NOS is able to prevent PCs from becoming infected by the new Ramnit worm, assuring the Japanese banking customers, as well as other nProtect users.

As is with most financial web fraud attacks, the malware is not targeting the bank’s servers. Instead, the vulnerability lies within user’s PC, a reminder that a strong defense at the end-point is critical in thwarting hacker’s attempt of stealing confidential information. To avoid having account information captured and prevent financial loss, Internet banking users must have the proper security solution to protect assets and stay one step ahead the hackers.

About nProtect, Inc.

Founded in January 2000, nProtect, also known as INCA Internet is headquartered in San Jose, California and provides online and mobile banking/payment security to financial institutions by securing users against hacking, malware, and other online and mobile threats including Zeus while meeting requirements for compliance including FFIEC.

Currently, over 100 million users from more than 1000 customers are using nProtect’s online security solutions including banks such as Bank of America, Deutsche Bank, ING, and HSBC.

nProtect was awarded one of the Fastest Growing Companies by Deloitte.

For more information, contact nProtect Inc.
Tel: 408-477-1742
Email: sales (at) nProtect (dot) com

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Don Lee
Email >
Visit website