Tag: trojan
-
Attack targets government agencies in CIS countries
Trojans used to steal specific files. Researchers at Trend Micro have discovered an ongoing targeted attack against, among others, government agencies and diplomatic missions in Russia and its neighbours. The attack is executed by sending targeted emails to employees. These emails contain attachments that exploit vulnerabilities in popular software and allow the attackers to install…
-
Fake codec trojan disables anti-virus software
Victim tricked into believing security software still active. A new trojan, discovered by researchers at ESET , spreads itself via fake codecs, then disables running anti-virus solutions and makes the user believe that the anti-virus is still running. The trojan spreads via Facebook chat and engages in a short, probably automated, conversation with the victim…
-
Trojan uses remote user account to control compromised machine
Malware targets customers of Brazilian banks. Researchers at Kaspersky have discovered a piece of malware aimed at customers of Brazilian banks which creates a remote user account to enable attackers to take full control of the compromised machine. The malware is spread via an email that poses as an update to Flash Player . Although…
-
Zitmo trojan for Android defeats two-factor authentication
Malware intercepts TANs sent via SMS. A new variant of the Zitmo trojan has been discovered that infects mobile devices running the Android platform and which intercepts SMS messages from banks sending mobile TAN numbers, thus potentially defeating two-factor authentication. Two-factor authentication is used by many banks to prevent a customer’s online banking account being…
-
DroidKungFu command and control server may be mobile device
Android trojan makes use of root exploit. Researchers at Fortinet have discovered a command and control server for the ‘DroidKungFu’ Android trojan that appears to be a mobile device itself. While malware for mobile devices has become more prevalent in recent months, it is believed attacks are still carried out from static computers and servers.…
-
Exploit kit targets customers of air travel websites
SpyEye configuration intercepts personal data submitted to legitimate websites. Security researchers have uncovered a version of the ‘SpyEye’ trojan that steals credit card and bank account details from visitors of two air travel websites. SpyEye, like ‘Zeus’ (which some researchers believe it is related to), is an advanced exploit kit whose ‘customers’ use can configure…