NEWS FROM THE LAB - Friday, May 28, 2004

Korgo keeps going Posted by Mikko @ 21:44 GMT

The Korgo network worm keeps spreading actively, and it's aggressively stealing user information from infected machines. It does this via a keylogger which specifically collects user logins for online banks (the ones which do not use one-time passwords). It also logs everything the user types to any web form - this will collect lots of credit card numbers, passwords etc.

If you've been infected by Korgo, change your passwords and cancel your credit cards. Especially the ones you've used during last week. This is not a joke.