Monday, February 15, 2010

Suspicious CU@Home login - "TDSS rootkit"

In an effort to keep our online services convenient and safe for our Members, we want to make you aware of a potential security issue regarding your PC access to CU@Home.

Recently, a few Members have reported a pop-up message prompting them to enter their credit card information for verification because CU@Home failed to authorize their PC for login. This is a “phishing” attempt most likely caused by a virus and/or malware. In particular, through our research, it may very possibly be a rootkit known as “TDSS rootkit.”

A rootkit is like a virus that consists of one or more programs designed to hide the fact that a PC has been compromised. It can’t always be readily detected or removed by standard anti-virus software and typically requires special removal tools.

If you are receiving suspicious pop-up messages when logging into CU@Home, or any other secure websites, that ask you for personal information such as your credit card number, please do not provide it. If you have suspicions regarding the log-in process, please contact us.

Team One strongly recommends having your PC checked routinely by professionals for possible virus infection or system compromise. We also recommend that you change your CU@Home PIN and password as a precaution should you encounter issues with your PC being infected or compromised.

Please note that Team One is routinely audited by government agencies and independent security analysts to ensure the security of your information. We exceed all local and federal regulations for providing and operating technology as a financial institution.

Read the latest on "TDSS rootkit" on Google News.
See the Wikipedia entry for "rootkit".