Jest to ko艅 troja艅ski wykorzystuj膮cy technologi臋 polegaj膮c膮 na podszywaniu si臋 (spoofing). Ma posta膰 fa艂szywej strony HTML. Powsta艂 w celu kradzie偶y informacji dotycz膮cych klient贸w banku Washington Mutual Bank.

Szkodnik rozsy艂any jest jako bardzo wa偶na wiadomo艣ci od banku Washington Mutual Bank:

Dear Washington Mutual customer,

Due to concerns for the safety and integrity of the online banking community
we have issued this warning message. It has come to our attention that your
account information needs to be updated due to inactivity. If you could please
take 5-10 minutes out of your online experience and renew your records you will
not run into any future problems with the online service. In case you are not
enrolled for Internet Banking, you will have to use your Social Security Number
as both your Personal ID and Password and fill in all the required information,
including your name and your account number.

However, failure to update your records may result in your debit card suspension.
Once you have updated your account records your internet baking service will
not be interrupted and will continue as normal.

Please follow the link below to renew your account information.

Thank you for your prompt attention to this matter

The Washington Mutual Bank Team

Wiadomo艣膰 zawiera odsy艂acz do fa艂szywej strony. Odsy艂acz ten wykorzystuje luk臋 Frame Spoof w przegl膮darce Internet Explorer.

Luka Frame Spoof wyst臋puje w przegl膮darce Microsoft Internet Explorer w wersji 5.x oraz 6.x, a wi臋cej informacji na jej temat oraz odpowiedni膮 艂at臋 mo偶na znale藕膰 w biuletynie firmy Microsoft - MS04-004 (

Osobiste informacje u偶ytkownik贸w wprowadzane do formularza zamieszczonego na fa艂szywej stronie WWW trafiaj膮 do hakera. HTML.Phishing.Bank-1 (ClamAV),   Trj/Citifraud.A (Panda)