American Express has warned on-line account holders of an unauthorised security pop-up that appears on its home screen.
The pop-up tries to steal the personal details of customers and forwards them to remote hackers.
In an online warning, American Express said, “Please note that this fraudulent activity may be the result of a computer virus and is not a part of the American Express website. If you received this pop-up box, your computer may have this virus.”
The pop-up is believed to stem from a sophisticated Trojan virus infecting users’ machines. Using the machine’s browser, the Trojan can make the pop-up appear every time the user visits the American Express secure site.
The virus then forwards the information entered in the pop-up to remote hackers who can use it for identity fraud. The pop-up doesn’t seek to collect log-in information of American Express accounts.
The pop-up tries to get the user’s name, social security number, mother's maiden name and date of birth.