Re: Prg Banking Trojan information?

[David Harley <dharley () SMALLBLUE-GREENWORLD CO UK>]

Not sure if you got a response to this. (Sorry: I've been a bit tied up with
other things.) Anyway, you might find this useful/interesting:
http://www.secureworks.com/research/newsletter/2007/12/?year=2007
<http://www.secureworks.com/research/newsletter/2007/12/?year=2007&month=12#
threat> &month=12#threat

--
David Harley CISSP, Small Blue-Green World
Security Author/Editor/Consultant/Researcher
AVIEN Administrator - http://www.avien.org <http://www.avien.org/>
Blogs: http://blogs.securiteam.com <http://blogs.securiteam.com/> ,
http://dharley.wordpress.com/
AVIEN book: http://www.smallblue-greenworld.co.uk/Avien.html






  _____

From: Peter Charbonneau [mailto:Peter.Charbonneau () WILLIAMS EDU]
Sent: 14 December 2007 13:11
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Prg Banking Trojan information?


Yesterday's and today's "new" seems to be filled with the Prg Banking Trojan
news. I have spent the last 90 minutes trying to find out more information
-- specifically do I really need to block these bots at the edge (I think,
yes) and how. There seems to be a noticeable lack of information about the
network spaces, ports, etc., that the trojan uses. I have used google to
search for Symantec and ZBOT, (or Sophos or ...) and have found information
about the trojan from June, but nothing very specific about the current
threat.

Does anyone have link for technical information about this? I have had as
much of the media hype as I can stand.

TIA



PeteC


Peter Charbonneau
Sr. Network and Systems Administrator
Williams College
(413) 597-3408 (office)
(413) 822-2922 (cell)





__________ NOD32 2723 (20071214) Information __________

This message was checked by NOD32 antivirus system.
http://www.eset.com