Monday, January 14, 2008
I've just read from the Symantec Security Response Weblog that they detected a trojan that behaves exactly like what I predicted a few years ago: it dynamicly changes the content from wire-transfer transactions, defeating two factor authentication mechanisms. It was also part of my Black Hat presentation last year.What will happen to the two-factor authentication fever if this attack starts to spread? I believe that we will start to see some challenge-response solutions that include data from the transaction appearing. It's one of the best solutions to use against this attack vector.
Posted by Augusto Barros at 5:19 PM