Comments on: In-depth analysis of Mebroot/Torpig trojan available http://www.trustdefender.com/blog/2009/07/14/in-depth-analysis-of-mebroottorpig-trojan-available/ Technical Updates from the TrustDefender Labs Wed, 09 Jun 2010 10:19:15 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Paul Braga http://www.trustdefender.com/blog/2009/07/14/in-depth-analysis-of-mebroottorpig-trojan-available/comment-page-1/#comment-220 Paul Braga Sun, 04 Oct 2009 23:40:51 +0000 http://www.trustdefender.com/blog/?p=190#comment-220 I'm an IT Consultant/VAR and Calif licensed PI, and am very interested in security issues. Saw the googletechtalk in which Richard Kemmerer talked about the research project at UC Berkeley that took over a botnet. He talked about mebroot and torpig and their finding over 300 fake bank login pages for phishing. I would very much appreciate receiving the analysis of mebroot/torpig. A client that has PCI compliance requirements has said they'll worry about it if anything happens. It's a difficult situation and I'd like to make the case for why this is such risky approach. regards, Paul I’m an IT Consultant/VAR and Calif licensed PI, and am very interested in security issues. Saw the googletechtalk in which Richard Kemmerer talked about the research project at UC Berkeley that took over a botnet. He talked about mebroot and torpig and their finding over 300 fake bank login pages for phishing.

I would very much appreciate receiving the analysis of mebroot/torpig.

A client that has PCI compliance requirements has said they’ll worry about it if anything happens. It’s a difficult situation and I’d like to make the case for why this is such risky approach.

regards,

Paul

]]>