Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam. If you have any thoughts for how we can improve the content on these pages, please take a moment to provide some
Security Response Blog
Samir_Patil @
Fri, 24 May 2013 00:11:55
Contributor: Binny Kuriakose Anonymity disguised as freedom of expression and lack of clear cut laws makes ...
Rodrigo Calvo @
Thu, 23 May 2013 22:04:25
Downloader.Liftoh is a Trojan horse detected by Symantec that downloads malware onto the compromised computer without ...
Samir_Patil @
Thu, 23 May 2013 13:03:44
Symantec is observing an increase in spam containing URLs. On May 16, URL spam volume increased ...
Mathew Maniyara @
Thu, 23 May 2013 07:03:47
Phishers are trying everything they can to improve their chances of harvesting user credentials. They are ...
Anand Muralidharan @
Wed, 22 May 2013 23:35:08
Natural disasters, like tornadoes and earthquakes, are quite common in the United States of America. Unfortunately, ...
Candid Wueest @
Tue, 21 May 2013 21:19:28
Having control over an email account can be a lot of power, even though most people ...
Threat Spotlight
Trojan.Clampi is a Trojan horse that attempts to steal login credentials related to online banking and other financially related websites. The threat is typically installed by way of drive-by download and once it compromises a computer, it downloads several modules. One of these modules is used to spread Clampi through network shares.
Trojan.Clampi is able to bypass firewalls to relay the stolen information to a remote attacker and also uses a SOCKS proxy to allow the remote attacker to then login to banking and other financially related websites anonymously with the stolen credentials.
More information on Trojan.Clampi is available in the threat family writeup.
