The threat of cyber crime never truly goes away, particularly as banks increase their use of the Internet through social networking, browser tool bars and Flash animations. This “richer” web experience opens new possibilities for Internet crime, particularly as thieves shift their attacks from email to the web.
Recent stories in a variety of media have focused on the new generation of computer worms and viruses designed to turn our online “friends” against us. Because these exploits are embedded in social networking sites, they don’t attempt to infect via e-mail or website links, often making them immune to antivirus and firewall software.
To combat these new threats, companies and financial technology services such as COCC are installing advanced web filtering capabilities along with other intrusion detection programs. These systems help prevent bank personnel from visiting criminal web sites and from inadvertently downloading “crimeware” which can corrupt networks and steal private information.
One of the current risks is the koobface worm, which is spread through interactive social networking sites. Koobface strikes while users are browsing Facebook, MySpace, Hi5, and other sites.
The danger comes from third party developers who add functionality to Facebook by contributing “plug-in” programs. In some cases, these plug-ins will accept user input without properly sanitizing the incoming data. As a result, malicious content can be injected onto the user’s Facebook page via the vulnerable plug-in.
This site mimics the appearance of Facebook and YouTube, and contains a fake Adobe Flash video with the error “This content requires Adobe Flash Player 10.37. Would you like to continue?” The user is then prompted to download a file called “setup.exe.” Once executed, this file attempts to infect the workstation and continue connecting with malicious servers for updates thereafter.
Web filtering and intrusion prevention systems are part of the multi-layered approach to security recommended for all users.
Educate staff to be aware of suspicious URLs and websites. Many attacks rely on social engineering and user interaction. By training the user to be aware of suspicious addresses and behavior, you can reduce the likelihood that users will become victims of these scams.