New RSA Service to Target Trojan Horses

The service will strike back at cyber-criminals by helping financial institutions take down Web sites associated with Trojan horse software.

RSA, the security division of EMC, is launching a new service in April to protect companies from malware attacks.

RSA FraudActionSM Anti-Trojan service is designed to help companies secure their organizations from session-hijacking Trojans, keyloggers and malware used by criminals to steal personal and financial information from consumers.

A survey commissioned by RSA in December found that 82 percent of the 1,678 adults surveyed said they are less likely to respond to an e-mail from their bank because of phishing and other online scams.

Forty-four percent of respondents said they are becoming more and more concerned about other types of attacks, such as Trojans and keyloggers.

Cyber-criminals are increasingly using Trojan horses to attack systems, and the situation requires a holistic approach by security vendors, said Louis Gasparini, co-CTO of RSAs Consumer Business Unit.

/zimages/1/28571.gifClick here to read more about the importance of security in information management.

"Were seeing [these attacks] globally; were seeing this in the U.S.," he said.

In response, the RSA FraudAction Anti-Trojan service is being designed to provide a proactive, layered approach to dealing with financial crimeware and advanced attacks, company officials said.

The new service aggregates data from RSA and its partners in virus protection to allow financial institutions to see what malware is targeting their customers, how it works, and it lets them block consumer access to known infection points on the Web. The service will also help customers shut down drop sites, RSA officials said.

"Trojans and advanced online attacks are becoming increasingly prominent," said Avivah Litan, an analyst at Stamford, Conn.-based Gartner.

"They are much less visible than phishing attacks, making them even more of a threat because its difficult to educate consumers how to avoid them. Service providers should be proactive in protecting customers and their accounts, and we are beginning to see market solutions that help accomplish this goal."

Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEKs Security Watch blog.