Shylock Malware

Shylock refers to a family of malware that relies on browser-based man-in-the-middle (MITM) attacks and fake digital certificates to intercept network traffic and inject code into banking websites. The Shylock malware was first discovered in February 2011 and derives its name from references in the code to Shakespeare s The Merchant of Venice.

The Shylock malware code is designed to trick customers into providing banking login and account details to hackers instead of to the bank s customer service department. Some Shylock strains even have the ability to open a fake customer service chat window on an infected computer to enable cybercriminals to prompt the user for their sensitive account information.

Newer strains of the Shylock malware have added the ability to detect whether the malware is running in a virtual machine (VM) that s being analyzed by malware researchers. The Shylock malware does this to help make analysis more difficult and avoid detection by security researchers.

Virtual machines are frequently employed by security teams to test programs in simulated environments to more easily detect malicious behavior. When the Shylock malware detects it is being run in a virtual environment, the code will shut down the program.

Forrest Stroud
Forrest Stroud
Forrest is a writer for Webopedia. Experienced, entrepreneurial, and well-rounded, he has 15+ years covering technology, business software, website design, programming, and more.

Related Articles

Early Adopter

Early adopters play an integral role in the shift from untested to critical technology—they're the first buyers to invest in new hardware, software, or...

Process Automation

Process automation shortens or eases manual tasks, often making the results more accessible to users. Automation typically decreases the need for human deliberation or...

Digital Marketing Acronyms and Terms to Know

Many companies have had to evolve their businesses to meet consumer wants and needs in new ways. One area that is evolving consistently and...

Database Software

All organizations must store and manage data in a database. Database software is key to efficiently accessing, controlling and sharing the information stored in...

Accenture

Accenture is a global professional services company that specializes in information technology (IT)...

Best Managed Security Service...

Organizations of all sizes can outsource their management of security devices and systems...

Gartner

Gartner is a world-renowned information technology (IT) consultancy and advisory firm that conducts...