According to the Stockholm newspaper Svenska Dagbladet, Swedish experts said that the clients of the largest Internet banks are increasingly suffering from the virus Citadel, which sends their data to Russia.
The new Russian virus sits in web browsers Internet Explorer and Firefox. When an infected user attempts to log into his online bank, the virus sends the login information to an IP address in Russia.
The IT Specialist Simon Stralberg from the IT company Exait AB has pointed to an unusually increased activity in the past week related to a virus Trojan Citadel. Handelsbanken security personnel drew attention to this while working with the clients.
According to him, the Citadel is very difficult to get rid of and requires you reformat your hard disk.
Handelsbanken's press officer Bengt Carlsson has confirmed that the bank's security personnel, and then the clients have discovered the Russian trojan. They warned that the clients should be wary if someone calls and asks a state account details.
- We will never ask for any information. We already have all we need.
Client should also not trust the messages on the screen or a web page that you do not know through calls one to fill out account information or codes. It is often the way that Russian KGB criminals will transfer the data.
Citadel is a newer and more powerful version of the Trojan Zbot (aka Zeus). The virus Zbot.gen! Y was designed specifically by spies and thieves from the gang of the FSB of Russia for operations against the Swedish banks SEB and Swedbank.
Department of Monitoring