New endpoint malware detected by experts

By

An endpoint security threat that steals sensitive company data from computers has been detected by experts.


The malware, named USB Switchblade, targets Windows systems and captures corporate information such as passwords, IP data, browser history and auto-fill records, including that used for online banking and other payment systems.

Moreover, security specialists claim the threat permits hackers into the system where they are able to set up "ghost admin" accounts and administer virtual network computing (VNC). This allows the criminals to change the configuration of the computer, set up privileges to obtain more data and gain remote access to other PCs on the network.

According to IT professionals, the malicious user downloads the malware off the internet and installs it onto a USB device. This then allows them to garner data from any unsecured endpoint on a computer in an office, call centre or bank.

The new threat works in the opposite way to USB Dumper, which security firms detected in October and stole files from the portable storage device.

"Organisations need to be vigilant as thieves develop more creative and ingenious ways to steal both personal and corporate data," said Andy Burton, CEO at Centennial Software.

"USB Switchblade is particularly clever as it is capable of not only stealing information such as user names and passwords, but can also set up a back door for thieves to enter the PC and selectively take data."
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
bydetectedendpointexpertsmalwarenewsecurity

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?