PxPixel
Recent survey says 40% of ID theft is from browser-based password software - Tech Learning

Recent survey says 40% of ID theft is from browser-based password software

Researchers from the Department of Computer Science at the University of California Santa Barbara have released a publication about the operation of a botnet known as Torpig. The team controlled the botnet for 10 days, and during this time they
Author:
Publish date:

Researchers from the Department of Computer Science at the University of California Santa Barbara have released a publication about the operation of a botnet known as Torpig. The team controlled the botnet for 10 days, and during this time they observed 180,000 infections and recorded over 70 GBs of harvested data, thanks to the Malware used in the botnet. Torpig has been distributed to victims as part of Mebroot, a rootkit that takes control of a machine by replacing the system’s Master Boot Record. This prevents most anti-virus tools from detecting Mebroot. Details on how the researchers were able to gain access to the botnet (and how their access was later cut off my the criminals behind the Malware) can be accessed HERE.

A few key findings from their research:

* Torpig was collecting over 1.2 million Windows passwords, form data from Web sites equal to 11.9 million records, and 1.2 million e-mail items.

* In 10 days, Torpig obtained credentials of 8,310 accounts at 410 different institutions. The top targets were PayPal, Pote Italiane, Capital One, E*Trade and Chase.

* 38% of the credentials stolen by Torpig were obtained from browser password managers, rather than by intercepting a login session.

Featured

Related

Survey Says...

Thanks to their ability to capture solid formative assessment data, SRSs are the hottest ticket since the doc cam boom. T&L checks out the latest products and features.

T&L News(40)

Arizona Plans for eLearning Future With the enactment of the eLearning-Centered Schools bill, Arizona is about to embark on a 10-year plan that could result in a complete transformation of K-12 education in the state. TN Developing Online Learning Courses A coalition of eight Tennessee counties is developing a model

Identity Theft

Question: What recommendations should districts give employees regarding identity theft, and what steps should be taken if an employee suspects his/her identity has been stolen? The IT Guy says: "ID Theft,", a Website produced by the US Federal Trade Commission’s, is an excellent resource to share

Resource language ID missing

Question: Every time I go into the control panel I get a message that says "The specific resource language ID cannot be found in the image file." The Avsmcpa.dll is missing. I recently removed McAfee Virus Scan from my PC and I understand that this is a file associated with it. I cannot find the Avsmcpa.dll

Password help

Question: The youngest children in our elementary computer lab have a lot of trouble typing in their passwords to log onto our computer network. Do you have any suggestions for making this process easier? The IT Guy says: Consider using a generic network login that does not have a password for younger users, and

Managing Student and Staff Passwords

Question: What suggestions do you have for helping manage passwords for staff and students? The IT Guy says: The best situation for an organization is to have a single sign-on system that uses authentication directly from your active directory database. The system should permit users to reset their password, and

Recent survey says 40% of ID theft is from browser-based password software promo image

New survey shows school IT breaches increasing

On May 18, CDW G announced the results of the 2009 School Safety Index. Based on a nationwide survey of over 400 K 12 district IT and security directors, the index measures 10 indicators and four contraindicators to set a