1. silversurfer

    Malware Alert Terdot Banking Trojan Could Act as Cyber-Espionage Tool

    The Terdot banking Trojan packs information-stealing capabilities that could easily turn it into a cyber-espionage tool, Bitdefender says in a new report.
  2. silversurfer

    Malware Alert IcedID: Original new banking Trojan emerges

    IcedID, a new banking Trojan that does not seem to have borrowed code from other similar threats, has entered the financial cybercrime arena. It was first spotted in the wild in September 2017, and it currently targets banks, payment card providers, mobile services providers, payroll, webmail...
  3. silversurfer

    Malware Alert "Silence" Trojan Records Pseudo-Videos of Bank PCs to Aid Bank Cyber-Heists

    Kaspersky Lab experts have found a new trojan that was deployed to aid cyber-heists of banks in Russia, Armenia, and Malaysia. Experts named the new trojan Silence. According to Kaspersky's GReAT investigation team, the trojan was spotted for the first time in September this year. Most of the...
  4. silversurfer

    Malware Alert Ursnif Trojan Uses New Malicious Macro Tactics

    Recently observed distribution campaigns featuring the Ursnif banking Trojan were using new malicious macro tactics for payload delivery, Trend Micro has discovered. Malicious macros have been used for over a decade for malware distribution, and have become highly popular among cybercriminals...
  5. E

    Retefe Banking Trojan Updates Spreading Mechanism

    There is a change in the spreading strategy of Retefe Banking Trojan in October 2017 while targeting Swiss users. Earlier in September 2017, we observed it being spread through LNK files embedded in the Documents. Attack Flow in September 2017 -> Doc -> LNK -> powershell -> Retefe However, in...
  6. silversurfer

    Security Alert Legitimate VMware Binary Abused for Banking Trojan Distribution

    A recently discovered banking Trojan campaign has been abusing a legitimate VMware binary to trick security products into allowing malicious binaries to load, Cisco researchers reveal. The campaign, the security researchers say, also attempts to remain stealthy by using multiple methods of...
  7. silversurfer

    Security Alert BankBot Resurfaces in Google Play with New Tricks

    BankBot, the dangerous Android banking trojan first uncovered earlier this year, has made its way to Google Play again, disguised as a popular gaming app. Calling itself Jewels Star Classic—in an effort to be conflated with a legitimate mobile game called simply Jewels Star—the malicious app...
  8. silversurfer

    Security Alert EternalBlue Exploit Used in Retefe Banking Trojan Campaign

    Criminals behind the Retefe banking Trojan have added a new component to their malware that uses the NSA exploit EternalBlue. The update makes Retefe the latest malware family to adopt the SMBv1 attack against a patched Windows vulnerability, and could signal an emerging trend, said researchers...
  9. silversurfer

    Security Alert Most Wanted Malware: Banking Trojans Come to the Fore Again

    Banking trojans were extensively used by cyber-criminals during August, with three variants appearing in Check Point’s latest Global Threat Impact Index. The Zeus, Ramnit and Trickbot banking trojans all appeared in the top 10. These Trojans work by identifying when the victim is visiting a...
  10. silversurfer

    Malware Alert New Dridex Phishing Campaign Delivers Fake Accounting Invoices

    A new variant of the banking trojan Dridex is part of a sophisticated phishing attack targeting users of the cloud-based accounting firm Xero. The global campaign is the latest in what security experts at Trustwave said is a wave of phishing attacks against Xero and other financial and...
  11. silversurfer

    Security Alert Banking Trojan Now Targets Coinbase Users, Not Just Banking Portals

    The TrickBot banking trojan has added support for stealing funds stored in Coinbase.com accounts, according to a recent version spotted in a distribution campaign last week. The TrickBot banking trojan is a new malware strain that appeared in the autumn of 2016 and most experts believe it was...
  12. silversurfer

    Malware Alert TrickBot Targets Outlook, Browser Data

    Soon after being found to have worm-like spreading capabilities, the TrickBot Banking Trojan has expanded its attack surface to target Outlook and Web browsing data. While TrickBot has been an active threat for less than a year, its developers, supposedly the Dyre group, have been actively...
  13. silversurfer

    Malware Alert Network Spreading Capabilities Added to Emotet Trojan

    Researchers at Fidelis Cybersecurity have spotted a variant of the Emotet Trojan that has what appears to be a feature designed to help the malware spread on internal networks. The recent WannaCry and NotPetya incidents have demonstrated how efficient an attack can be if the malware includes a...
  14. frogboy

    Malware Alert Banking Trojan Found on AdSense Network

    Security experts are warning Android users of a well-known banking trojan which is being spread by the Google AdSense network, meaning users only need to visit a legitimate site to get infected. Kaspersky Lab malware analysts Mikhail Kuzin and Nikita Buchka explained in a blog post yesterday...
  15. Captain Awesome

    Android Trojan Steals Credit Card Info, Locks Devices Remotely

    A new Android banking Trojan capable of spying on users and stealing credit card info is achieving persistency on infected devices by asking for device administrator rights and continuously showing the dialog window until the user gives in. Researchers at AVAST warn that the new Banker Trojan...