Tuesday, June 10, 2003

BugBear learns new tricks, targets financial institutions

Government Computer News (GCN) daily news reports that the new version of BugBear targets financial institutions by logging keystrokes of the user and sending the logfile over the web to one out of ten e-mail addresses. That would possibly work for gaining illegitimate entry to those banks that use user id-password combinations as the basis for web-banking. But the Dutch banks' security culture is a little different (and more advanced), so we don't need to fear.