One month after Microsoft released a beta version of its new anti-spyware software, security researchers at Sophos say they have detected the first malware program that seeks to attack it.
The program, named BankAsh-A, tries to disable Microsoft AntiSpyware and delete all files within its folder, Sophos says. It also tries to steal users' banking passwords by installing a keystroke logger that records information typed into online banking sites, according to the antivirus firm.
The program appears to targets users of UK online banks Barclays Bank, Cahoot, Halifax, HSBC Bank, Lloyds TSB Bank, Nationwide, NatWest and Smile, Sophos says.
While there are a number of malware programs that attempt to steal banking passwords, this one is interesting because it seems to single out Microsoft's anti-spyware software for attack, says Sophos senior technology consultant Graham Cluley.
AntiSpyware is designed to protect Windows users from spyware, or programs that surreptitiously monitor computer users' actions, and other malicious programs.
Sophos was first made aware of the program Wednesday morning, Cluley says.
Although the researchers have only seen a handful of incidents of the program "in the wild" – out on the internet – the speed in which hackers targeted Microsoft's AntiSpyware software is concerning, Cluley says.
The software maker began offering the beta of AntiSpyware in early January, via free download.
Sophos advised internet users not to download unknown files and to make sure their antivirus software is updated to protect against attack. Microsoft representatives weren't immediately available to comment on the threat Thursday.