Sinowal Trojan Reappears

Sinowal Trojan Reappears

July 14, 2014

Have you received an email with this message?

Have you received an email with this message?

Panda Security warns of a new wave of Trojans belonging to the Sinowal family that have developed cybercriminals to access the personal data of unsuspecting Internet users; this time through messages from courier service companies and online media newsletter updates.

A Trojan is a type of virus that can delete files or destroy information on the hard drive. They are capable of capturing and forwarding confidential data to an external address or opening communication ports, allowing a possible intruder to control our computer remotely. They can also capture the texts entered with the keyboard or record your passwords. This is one of the most frequent ways in which cybercriminals steal banking data. Sinowal is a variant of a Trojan that emerged in 2009, at that time using social engineering techniques, inviting those who received the email to enroll in a program of vaccination against the H1N1 virus (swine flu), which was on the rise at the time, said Roxana Hernández, general manager of Panda Security Venezuela.

Like the variant spread in 2009 (sinowal.WRN), it was designed to steal information from a user’s computer such as passwords or other sensitive information. Then, it stores this information in a series of files to send it to its creator later. Sinowal.WRN was not capable of spreading automatically by its own means, but required the intervention of an attacking user for its propagation; and that door was activated at the moment of clicking on the link attached to the email and registering on the page to which it links.

How to avoid being a victim of Trojans? – Do not download content from pages or emails from unknown or dubious sources. – Monitor downloads made from P2P applications. – It is important to have an up-to-date antivirus. – Do a free computer scan and check if it is free of Trojans.

[+] Videos de nuestro canal de YouTube