Sunbelt researchers uncover data collected by ID theft ring

A variant of browser hijacking tool CoolWebSearch (CWS) is behind an ID theft ring that uses spyware to steal confidential information from business and home PCs around the world, according to researchers at Sunbelt Software.

 A variant of browser hijacking tool CoolWebSearch (CWS) is behind an ID theft ring that uses spyware to steal confidential information from business and home PCs around the world, according to researchers at Sunbelt Software.

The CWS programs redirect users to websites that use spyware tools to collect a variety of information from infected computers. Sunbelt researchers say they have uncovered a CWS variant that turns infected systems into spam zombies and uploads a wide variety of personal information to a remote server located in the US.

A Sunbelt blog on the topic says researchers have viewed content on this server and it includes instant-messaging chat sessions, search terms, social security numbers, credit cards, logins and passwords.

Sunbelt has released limited technical information on the find, but is working with the FBI and US security services.

"It's one of the most egregious things we have ever seen," said Sunbelt president Alex Eckelberry. "We know this kind of data is out there, but this is the first time we actually have the data that the criminals are using."

 

 

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close