Malware against virtual keyboards
More and More banking institutions are replacing the usual username/password form with a virtual keyboard. The sole purpose of thie method is to defeat keyloggers.
Unfortunately for them, more and more malwares also defeat the purpose of using virtual keyboards. The guys at VirusTotal analyze a new trojan that performs a series of small screen captures of the area aroundthe mouse cursor.It also adds a red arrow pointing exactly where the user clicked.
The hacker behind the trojan then receives a serie of pictures showing exactly where the user clicked:
VirusTotal also decyphers a list of banking sites monitored by the virus and explains how the malware does it.