Trojan program dubbed “OddJob” is designed to hijack a user’s online banking session in real-time by stealing session ID tokens. By stealing the tokens, fraudsters can impersonate a legitimate user and access accounts while the user is is still active online. OddJob will likely feature more sophisticated functions in future, security firm Trusteer says. The malware is programmed to steal session IDs from customers of dozens of specific banks in the U.S., Denmark and Poland. It can be programmed to execute other actions on targeted Web sites besides stealing session information.”]