http://www.tidos-group.com/blog/2008/10/02/new-mutation-of-yaludlesilentbanker-rootkit-in-the-wild/ malware research, IT Security and life in general :-) Wed, 15 Jan 2014 03:13:55 +0000 hourly 1 https://wordpress.org/?v=3.9.40 http://www.tidos-group.com/blog/2008/10/02/new-mutation-of-yaludlesilentbanker-rootkit-in-the-wild/#comment-12 Fri, 09 Jul 2010 22:03:00 +0000 http://www.trustdefender.com/blog/?p=31#comment-12 The link to the Knowledge base article does not work. Bank said I was infected with Yaludle virus. Everything I checked said that I was not. Virus scans by several companies found nothing. Rootkit scans found nothing. Searched for registry keys mentioned in this article and nothing found.
I think it was a false positive that caused a lot of work for nothing.

]]> http://www.tidos-group.com/blog/2008/10/02/new-mutation-of-yaludlesilentbanker-rootkit-in-the-wild/#comment-11 Fri, 31 Oct 2008 04:59:05 +0000 http://www.trustdefender.com/blog/?p=31#comment-11 Hello, I was looking around for a while searching for rootkit and I happened upon this site and your post regarding new mutation of yaludle/silentbanker rootkit in the wild, I will definitely this to my rootkit bookmarks!

]]> http://www.tidos-group.com/blog/2008/10/02/new-mutation-of-yaludlesilentbanker-rootkit-in-the-wild/#comment-10 Thu, 02 Oct 2008 17:56:37 +0000 http://www.trustdefender.com/blog/?p=31#comment-10 @anonymous: well, the problem is that the trojan controls the session and the content you are seeing is NOT from the bank. So in this sense a mutual https authentication does not help much as the form where the confidential information is lost, is not the real deal.

]]> http://www.tidos-group.com/blog/2008/10/02/new-mutation-of-yaludlesilentbanker-rootkit-in-the-wild/#comment-9 Thu, 02 Oct 2008 15:01:57 +0000 http://www.trustdefender.com/blog/?p=31#comment-9 so, would mutual https authentication thwart this attack?

]]>