Ever since, internet banking came into existence it has been a bull's eye for the hackers. Up to date, several cases have been reported by internet banking users for missing money or misuse of their accounts unknowingly. Well designed malwares are written to attack internet banking websites and its customers. Today botnets are emerging as the most significant threat facing online ecosystems. Identity theft is one of the most serious problems to online financial institutions. This paper highlights botnet attacks targeted to internet banking applications and proposes a framework to mitigate the risk utilizing trusted platform module.