|19 Feb 2014||#1|
| || |
Hiding in plain sight: a story about a sneaky banking Trojan
The Zeus/Zbot Trojan is one the most notorious banking Trojans ever created; it’s so popular it gave birth to many offshoots and copycats.
The particularity of Zeus is that it acts as a “man-in-the-browser“ allowing cyber-crooks to collect personal information from its victims as well as to surreptitiously perform online transactions.
A new variant of this trojan, dubbed ZeusVM, is using images as a decoy to retrieve its configuration file, a vital piece for its proper operation.
French security researcher Xylitol noted something strange in one of the malvertising campaigns I reported a couple weeks ago.
The malware was retrieving a JPG image hosted on the same server as were other malware components.
He later sent me a message about how this new variant was using steganography, a technique that allows to disguise data inside of an existing file without damaging it.
|My System Specs|
|Similar help and support threads for2: Hiding in plain sight: a story about a sneaky banking Trojan|
|64-Bit Version of Zeus Banking Trojan In The Wild||Security News|
|New advanced banking Trojan in the wild||Security News|
|Banking Trojan posing as Avast AV||Security News|
|A New Banking Trojan Takes on ZeuS||Security News|
|Hiding in plain sight.||Security News|
|Our Sites ||Site Links ||About Us ||Find Us |
© Designer Media Ltd
All times are GMT -5. The time now is 07:43 PM.