Security firm Sunbelt Software has issued a fix to tackle a newly identified spyware keylogger that can steal logins, passwords and personal data when users visit websites such as eBay or PayPal.
The spyware keylogger, Srv.SSA-KeyLogger, steals data from the html forms that websites use to collect logins and passwords and personal information such as banking details. It is a new variant of a family of existing Trojans known as Dumaru or Nibu.
It was identified when a Sunbelt spyware researcher uncovered a huge online identity theft ring in which thousands of people’s personal data had been compromised. Researchers found that search terms, social security numbers, credit card details, logins and passwords had all been stolen.
Sunbelt is providing a fix by adding new definitions to its CounterSpy and CounterSpy Enterprise anti-spyware products. The company – which last week shared its findings on the identity theft ring with the FBI – said it would also share data on the keylogger with other major security firms.