Also described at

http://threatpost.com/ramnit-malware-back-and-better...

with a bit more detail

In reply to a post by zhango:

When I logon to my online bank I'm prompted to download 'Trusteer Rapport' software which I haven't because of the bad reviews saying it causes problems.

Trusteer Rapport can make Windows XP (in particular) extremely slow. As I haven't met anyone who knows how it works - thereby rendering it ineffective - you are well advised to ignore it.

They may have conned the banks into buying it on your behalf, but you don't have to fall for it.

I always refuse Rapport. As far as I could see all it does is things any sensible person does anyway re checking validity of incoming communications. Which means it introduces another possible point of failure, in that it is bound to be hackable itself.

I think it is based on two things. Customers who are gullible when presented with a phish, and customers who don't have any other anti-phishing/Spam detecting software.

Today I received a phone call from a company purporting to be doing a customer satisfaction survey on behalf of what happens to be my bank. Normally I would ask for a number I could call back to after verifying it with my bank. This time I didn't have that inconvenience as I was told it would take 15-20 minutes - impossible for me to spare for such a purpose - so I just politely refused.

Ok thanks - still no supporters for Rapport so I'll give it a miss.

Yet when I wanted to send some money to my dad I was given a message saying to add new payees I had to go into branch to have them added on and that if a payee is not used in 12 months it will expire.

There was nowhere for me to add a new payee online.

In reply to a post by undecidedadrian:

There was nowhere for me to add a new payee online.

Not explicitly but it's there under Make a Payment -> Someone New.

Perhaps you don't have a PIN Sentry?

In reply to a post by zhango:

When I logon to my online bank I'm prompted to download 'Trusteer Rapport' software which I haven't because of the bad reviews saying it causes problems.

Do you have an opinion on this and if my account was compromised I'm wondering if my bank could blame me for not downloading the advised security software?

I use Rapport (on Win XP and 7) - it is lightweight and has not caused any issue or impacted performance one jot. Why don't you try it out, you can always uninstall it.

It does a lot more than check what is in your address bar, and the bank logs whether Rapport was active for each session.

My bank has a formal promise to cover any online fraud so long as reasonable care was taken. It also pushes Rapport. You can work the rest out for yourself : )

In reply to a post by vimto_girl:

I use Rapport (on Win XP and 7) - it is lightweight and has not caused any issue or impacted performance one jot. Why don't you try it out, you can always uninstall it.

Lightweight ? ROTFL. Add up the RAM in use by its multiple processes and do let us know. The time it takes to uninstall itself is a clue how "lightweight" it is.

It's a pile of garbage, they couldn't sell it to the public but have found a gullible corporate market to exploit.

Why don't you try it out ? Because at best it's no benefit and at worst you're making work for yourself.

Thanks for advice v-girl but there are more 'agains't than 'for' so I think I'll leave it alone. Apart from replies on here, I've googled it and nobody like it.

In reply to a post by yarwell:

Lightweight ? ROTFL. Add up the RAM in use by its multiple processes and do let us know. The time it takes to uninstall itself is a clue how "lightweight" it is.

It's a pile of garbage, they couldn't sell it to the public but have found a gullible corporate market to exploit.

Why don't you try it out ? Because at best it's no benefit and at worst you're making work for yourself.

A whopping 32MB in two processes. And a life-wasting 43 seconds to uninstall from click to finish on a low-spec 5400rpm laptop (and at least 15s of that must have been me typing in the security captcha to shut the processes down).

If you don't understand the benefit when it comes to making a claim and it is listed as a recommended security step by your bank ...well good luck