The latest variants of Bagle that we’ve detected over the past five days show that the virus writer behind this worm is shifting focus to on-line banks and payment systems. Some links that previously contained a range of spam tools now contain variants of Trojan-Spy.Win32.Banker.
It’s worrying that the author isn’t targeting specific on-line payment systems, as most malicious code writers do, but several hundred on-line banking systems. Systems around the world are at risk, including ones in Japan, the UK, and the USA.
As usual, we promptly issued antivirus updates to protect against the latest versions of Trojan-Spy.Win32.Banker.