The Italian Honey Project

This month, the criminals behind the reincarnation of Zeus, known as SpyEye, found another way to circumvent the security measures introduced by some online banks. Researchers at financial security firm Trusteer documented a variant of SpyEye that has the ability to infect a computer, steal the victim’s logon credentials, and change the phone number that the bank uses to confirm transactions. It’s the latest update to an attack that, among other tactics, infected the mobile phone to which banks would send text messages to confirm transactions.

“This attack is much stronger than what we had seen before,” says Mickey Boodaei, CEO of Trusteer. attack is

via Banking Trojans Adapting To Cheat Out-of-Band Security – Dark Reading.