Shylock man-in-the-browser (MitB) banking Trojan is still being upgraded as part of a campaign to migrate from its traditional targets in UK financial services to foreign ones. New features include a new DiskSpread utility that allows the Trojan to infect external and USB drives, a plug-in for scraping FTP and other passwords, and something called ‘BackSocks’ which turns the compromised PC into a proxy server. Other features include Archiver, a utility for compressing video files so they can be more easily uploaded to a remote server, and a ‘VNC’ facility.”]