The Department of Homeland Security announced the danger of a recent method that hackers were using to steal credit-card information last week. For a quick recap, the method that hackers use to infect systems isn't social engineering, Web drive-by attacks or zero-day exploits. The hack tries to use your remote management software against your PC.
Remote management software is any program that lets someone access your PC remotely like LogMeIn, Microsoft Remote Desktop and Apple Remote Desktop.
Hackers search for a business using this software and then "brute force" their way into the system. Brute force means that they simply try every possible username/password combination until something works.
"Brute forcing" a log-in screen requires hackers to try many different combinations, and the best way to stop them is to limit the number of times that they can possibly attempt to log in to your system.
The reason they go through so much effort is that if the hackers can get access to a business's remote access software, then they can install malware that steals credit-card information every time a purchase is made. Luckily, Sophos released an update that means that you'll be able to figure out whether or not your PC is infected.
If your computer is infected, the malware will come up as Trj/BckOff-A/Trj/Bckoff-B/Trj-Agent-GXXX. If that's the case, change your remote access password after removing the virus. Need a refresher on virus removal? My three simple steps for virus removal will help.