Malicious software targeting online banking users is evolving and on the rise. These malicious programs are commonly known as Trojans. Malware can find its way onto your computer through spam, phishing emails and malicious websites. Attackers are also targeting users of Social Network sites to spread these malicious programs.
Once they are downloaded, the malware will often place your computer into a network (Bot Net, Bot Network) of infected systems making outbound connections to servers controlled by hackers. Your infected system then downloads additional viruses and malware for the purpose of capturing sensitive information; such as logins to an online banking site. These exploits rely upon your computer being inadequately protected by up-to-date virus protection software.
The "man in the browser" attack is one of the most dangerous techniques used by malware which is similar to a phishing attack. This attack occurs when you use an infected computer to access an online banking site. The malware on your system injects a fraudulent web page into your web browser and modifies the URL in your address bar so that it appears to still be within the online banking site. This may then trick you into believing that the displayed page is legitimate.
The fraudulent page will look very generic and will most likely not have your financial institution's name or logo. For instance the page may appear similar to the following:
If you see a web page similar to the one above while accessing TellernetSM Online Banking, follow these steps:
Most anti-virus programs include signatures that can detect and stop these types of Trojans. If your anti-virus program gets outdated or not updated, you will not be protected. It is important to keep your system updated with the latest Operating System and application patches. Use caution when visiting Social Networking sites, free software sites and reading emails. Do not click on links within e-mails or open attachments from unknown sources.
If you believe you are the victim of malware and have provided any confidential Hiway account information, please notify us immediately of the scheme by calling 651.291.1515 or 800.899.5626.