It was only a month ago that Microsoft Corp. announced its free antispyware application; however, malware has already been detected by an antivirus company, Sophos PLC, that will disable Microsoft’s program and delete all files in the program’s installation directory.
The malware, known as BankAsh-A, not only deletes all of the Microsoft antispyware files, it then goes on to install a keylogger (keystroke logging) program to record all data entered into online banking websites.
Dave’s Opinion
The current version, BankAsh-A, targets U.K. bank customers; however, future versions of the malware application could target other countries’ banking customers. While this type of keylogger isn’t new, BankAsh-A proves the concept that Microsoft’s antispyware software is vulnerable to attack.
It’s disconcerting, although not at all unexpected, that Microsoft’s antispyware would be targeted; many digital security experts just didn’t expect the first attack to come so quickly.
Call for Comments
What do you think? Leave your comments below.
Dave,
You’re telling the truth! The Microsoft AntiSpyware program, part of the acquisition of a Chinese software house. The program resides in the system toolbar, and uses a heap of system resources, and it’s no more effective than Ad-Aware or Spybot Search & Destroy, both products are freely available from their vendor’s websites.
When will Microsoft learn? Write good code, and the market will follow.
J.S.