Monday, June 18, 2018
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Google Uses Deep Learning to Predict When a Patient Will Die
Volvo Penta Unveils Self-docking Yacht Technology
iOS 12 Will Automatically Share Your Location with The Police
Google to Invest $550 Million in China E-Commerce Site JD
Intel to Showcase AI and HPC Demos at ISC
Google Introduces the VR180 Creator to Simplify Video Editing
HPE Sees Accelerators As a First Step Towards Making Quantum Computing a Reality
Samsung Lost FinFET Patent Case, Ordered to Pay $400 Million
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > General Computing > New Tro...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, December 19, 2014
New Trojan Targetted Banks Wordlwide


Researchers at Kaspersky labs have discoverd a new Trojan that targets a large number of online-banking systems: over 150 different banks and 20 payment systems in 15 countries.

Banks in the UK, Spain, the US, Russia, Japan and Italy make up the majority of its potential targets, according to Kaspersky.

The researchers say that the "Chthonic" Trojan is an evolution of ZeusVM, although it has undergone a number of significant changes.

The techniques used to infect victim machines with "Trojan-Banker.Win32.Chthonic" include sending emails containing exploits or downloading the malware to victim machines.

When sending messages containing an exploit, cybercriminals attached a specially crafted RTF document, designed to exploit the CVE-2014-1761 vulnerability in Microsoft Office products. The file has a .DOC extension to make it look less suspicious.

In the event of successful vulnerability exploitation, a downloader for the Trojan was downloaded to the victim computer.

Trojan-Banker.Win32.Chthonic has a modular structure. It is able to
collect system information; steal saved passwords; initiate remote access or recording video from a web camera.

The impressive set of functions enables the malware to steal online banking credentials using a variety of techniques. In addition, VNC and cam recorder modules enable attackers to connect to the infected computer remotely and use it to carry out transactions, as well as recording video and sound if the computer has a webcam and microphone.

But Web injections are Chthonic's main weapon, according to Kaspersky . They enable the Trojan to insert its own code and images into the code of pages loaded by the browser. This enables the attackers to obtain the victim's phone number, one-time passwords and PINs, in addition to the login and password entered by the victim.

For example, for one of the Japanese banks the Trojan hides the bank's warnings and injects a script that enables the attackers to carry out various transactions using the victim's account.

The script can also display various fake windows in order to obtain the information needed by the attackers.

Kaspersky's analysis of attacks against customers of Russian banks has uncovered an unusual web injection scenario. When opening an online banking web page in the browser, the entire contents of the page is spoofed, not just parts of it as in an ordinary attack. From the technical viewpoint, the Trojan creates an iframe with a phishing copy of the website that has the same size as the original window.



Previous
Next
T-Mobile to Pay $90 Million To Settle Case With FCC        All News        FBI Confirms North Korea Was Behind Sony Hack
North Korea Suggests Joint Inverstigation With U.S. Over Sony Hacking     General Computing News      FBI Confirms North Korea Was Behind Sony Hack

Get RSS feed Easy Print E-Mail this Message

Related News
Android Trojan Steals Passwords Sent Through Voice Calls
Kaspersky Discovers Trojan That Tricks CAPTCHA Into Thinking Its Human
Spying Program Was Stored Within Popular Hard Disk Drives
Regin Trojan Enables Stealthy Surveillance: Symantec
Trojan horse takes down smart phones

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2018 - All rights reserved -
Privacy policy - Contact Us .