Breaking News

Huawei Presents New Enterprise and Autonomous Driving Mobile Networks Products Toshiba Memory to Receive $2.7bn From Development Bank of Japan: Nikkei SDK to Begin Shipping MAMR-Technology-based HD Media Meet the $2,000 Galaxy Fold, Galaxy S10 Series of Smartphones, Galaxy Watch Active, Galaxy Fit and Galaxy Buds Huawei Announced Modular Equipment for Outdoor 5G Deployments

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

New Trojan Targetted Banks Wordlwide

New Trojan Targetted Banks Wordlwide

Enterprise & IT Dec 19,2014 0

Researchers at Kaspersky labs have discoverd a new Trojan that targets a large number of online-banking systems: over 150 different banks and 20 payment systems in 15 countries. Banks in the UK, Spain, the US, Russia, Japan and Italy make up the majority of its potential targets, according to Kaspersky.

The researchers say that the "Chthonic" Trojan is an evolution of ZeusVM, although it has undergone a number of significant changes.

The techniques used to infect victim machines with "Trojan-Banker.Win32.Chthonic" include sending emails containing exploits or downloading the malware to victim machines.

When sending messages containing an exploit, cybercriminals attached a specially crafted RTF document, designed to exploit the CVE-2014-1761 vulnerability in Microsoft Office products. The file has a .DOC extension to make it look less suspicious.

In the event of successful vulnerability exploitation, a downloader for the Trojan was downloaded to the victim computer.

Trojan-Banker.Win32.Chthonic has a modular structure. It is able to
collect system information; steal saved passwords; initiate remote access or recording video from a web camera.

The impressive set of functions enables the malware to steal online banking credentials using a variety of techniques. In addition, VNC and cam recorder modules enable attackers to connect to the infected computer remotely and use it to carry out transactions, as well as recording video and sound if the computer has a webcam and microphone.

But Web injections are Chthonic's main weapon, according to Kaspersky . They enable the Trojan to insert its own code and images into the code of pages loaded by the browser. This enables the attackers to obtain the victim's phone number, one-time passwords and PINs, in addition to the login and password entered by the victim.

For example, for one of the Japanese banks the Trojan hides the bank's warnings and injects a script that enables the attackers to carry out various transactions using the victim's account.

The script can also display various fake windows in order to obtain the information needed by the attackers.

Kaspersky's analysis of attacks against customers of Russian banks has uncovered an unusual web injection scenario. When opening an online banking web page in the browser, the entire contents of the page is spoofed, not just parts of it as in an ordinary attack. From the technical viewpoint, the Trojan creates an iframe with a phishing copy of the website that has the same size as the original window.

Tags: trojans
Previous Post
T-Mobile to Pay $90 Million To Settle Case With FCC
Next Post
FBI Confirms North Korea Was Behind Sony Hack

Related Posts

  • Android Trojan Steals Money From PayPal Accounts

  • Android Trojan Steals Passwords Sent Through Voice Calls

  • Kaspersky Discovers Trojan That Tricks CAPTCHA Into Thinking Its Human

  • Spying Program Was Stored Within Popular Hard Disk Drives

  • Regin Trojan Enables Stealthy Surveillance: Symantec

  • Microsoft Patch May be Trojan

  • Trojan horse takes down smart phones

0 Comments

Leave a Reply

More information about text formats

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

BBCode

  • No HTML tags allowed.
  • You may use these tags: [abbr], [acronym], [b], [center], [code], [color], [define], [font], [h1], [h2], [h3], [h4], [h5], [h6], [hr], [i], [img], [justify], [left], [list], [node], [php], [quote], [right], [s], [size], [sub], [sup], [u], [url], [wikipedia], [youtube], [align], [link], [ol], [ul]
  • Lines and paragraphs break automatically.
CAPTCHA
This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Enter the characters shown in the image.

Latest News

Huawei Presents New Enterprise and Autonomous Driving Mobile Networks Products
Enterprise & IT

Huawei Presents New Enterprise and Autonomous Driving Mobile Networks Products

Toshiba Memory to Receive $2.7bn From Development Bank of Japan: Nikkei
Enterprise & IT

Toshiba Memory to Receive $2.7bn From Development Bank of Japan: Nikkei

SDK to Begin Shipping MAMR-Technology-based HD Media
PC components

SDK to Begin Shipping MAMR-Technology-based HD Media

Meet the $2,000 Galaxy Fold, Galaxy S10 Series of Smartphones, Galaxy Watch Active, Galaxy Fit and Galaxy Buds
Smartphones

Meet the $2,000 Galaxy Fold, Galaxy S10 Series of Smartphones, Galaxy Watch Active, Galaxy Fit and Galaxy Buds

Huawei Announced Modular Equipment for Outdoor 5G Deployments
Enterprise & IT

Huawei Announced Modular Equipment for Outdoor 5G Deployments

Popular Reviews

Zidoo Z9S 4K Media Player review

Zidoo Z9S 4K Media Player review

CeBIT 2005

CeBIT 2005

Akasa Elite HDD Case

Akasa Elite HDD Case

Club3D HD3850

Club3D HD3850

CeBIT 2006

CeBIT 2006

LiteOn iHBS112 review

LiteOn iHBS112 review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Nvidia GeForce RTX 2080 Ti and GeForce 2080 Founder's Edition review

Sony NS955 DVD Player

Sony NS955 DVD Player

  • Home
  • News
  • Reviews
  • Legacy
    • Media Tests
    • DVD Media Formats

    • Glossary
    • FAQ
    • Firmware
    • Drivers
    • BIOS
    • Software
  • Forum
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed