May 20, 2008

Fake Google Talk Application With A Trojan!

As reported on Spywareguide Blog there are a fake Google Talk client in circulation.

As you can see on the screenshot above there is many visual differences between the real and fake client. The program doesn't connect to the Internet for this attack to be successful, hacker needs physical access to a PC that lots of people use. Could be a workplace PC, could be in a school, library, Net Cafe - anywhere where it's possible to run an executable file then retreat to a safe distance while the potential victim sits down and thinks "Just need to check something on IM...".

After the victim enters their login details into the application, the fake tool shows a fake error message and stores all login details in a text file. The attacker only has to sit down and browse to the C Drive where they'll see these login details.

This Month's Most Popular Posts