|
I thought this was interesting until i got to the end
where it says this
That's a very clever part of the Trojan," said Jackson. "How it downloads JavaScript from the command-and-control server so it looks like the [account owner] is accessing the account, not a bot." While less-sophisticated malware heads straight to a money transfer page without first appearing to "visit" the pages a real person would view before reaching the transfer page, Prg visits the bank's pages in order, as a person would. Because most anti-fraud looks for automated, non-human behavior, Prg won't trigger a fraud alert
Actually this is something any spider writer would do, regardless of being sneaky or trying to emulate a person... In fact in todays authenticated world, the programmer almost has to follow these steps, because most httpd-auth systems have been replaced with software / session based handling..
Giving way to much credit for something that is really simply... know what url is there,follow it.. lol
|