Trojans News, Articles and Updates

Hex-Men Trio using compromised SQL servers to conduct mining, DDoS attacks

A series of cyber-campaigns, jointly known as the Hex-Men Trio, that specifically target SQL Servers in order to use them to conduct additional attacks has been identified by Guardicore Labs.

New polymorphic malware evades three quarters of AV scanners

Emotet offensive sees malware continually repackaging itself to avoid signature-based detection

Wordpress hit with torrent attacks and malicious javascript

Dubbed, Sathurbot, the Trojan is disguised in a software torrent containing an apparent installer executable and a small text file.

New malware campaign spreads backdoors instead of ransomware

Nemucod changes tactics to infect systems - Trojan spreads backdoors instead of ransomware

Patchwork cyber-espionage campaign branches out to strike businesses

The cyber-gang behind the Patchwork, aka Dropping Elephant, cyber-espionage campaign has expanded its reach outside of government organisations and is now hitting the private sector.

Into the Mind of a RAT operator

Both Dyre and Dridex Trojans now use a combination of local redirection and RAT to effectively escape detection by current anti-fraud and security tools, but Uri Rivner says real-time behaviour analysis can still spot the bad guys.

SlemBunk Trojan family targeting Android banking app users

The Trojan family dubbed SlemBunk that is targeting Android-based banking app users has been observed masquerading as the legitimate apps of financial institutions in North America, Europe and Asia Pacific.

Report: Banking trojans and weaponised Office docs month's top attack vectors

Researchers at Invincea report that banking trojans delivered by weaponised Office documents were the top attack vector for the month of October.

Small businesses are losing money to cyber-criminals

SMEs are at greater risk from the consequences of cyber-attack, less able to recover, with more mission-critical data on a single machine, so educating themselves about mitigating the risk is essential says Andrew Conway.

CryptoWall ransomware undressed in new report

An infamous piece of ransomware, CryptoWall, has been cracked, according to industry sources.

Cyber-espionage malware on German official's computer, authorities investigate

The 'Regin' malware has been found on the laptop of a high ranking German official, signalling foul play, perhaps by a western spy agency. Germany has started to investigate.

The Vawtrak Trojan reemerges tougher and sneakier

The Vawtrak bug back and meaner than ever, say Proofpoint researchers

ICYMI: GCHQ Password advice; Jihadi cabinet attack; Dridex hits UK; MS Irish data; ATM malware

In this week's In Case You Missed It (ICYMI): GCHQ advises on passwords; Jihadi cabinet attack 'avoidable'; CERT UK aids Dridex targets; Data jurisdiction dispute; Multi-vendor ATM malware

Russian government implicated in cyber-spying campaign by Dukes hacking group

Seven-year malware operation likely to be Russian-state sponsored according to F-Secure

Mighty morphin malware dangers

The modular CoreBot Trojan login credential stealer has started morphing and now it has turned into a fully fledged bank robber instead.

IBM urges companies to block Tor—new banking trojan on black market

IBM advises businesses to block access to Tor and other anonymous networks.

Firms track Dyre's rise to top financial malware threat

In the year following Gameover Zeus takedown efforts, Dyre has steadily emerged as the financial trojan of choice among cyber-criminals.

German Bundestag breach: Two threat actors, two different Trojans?

German chancellor Angela Merkel inadvertently helped spread Trojan malware in the German Parliament (Bundestag), which is now facing a new wave of cyber-attacks. But there remain more questions than answers when it comes to the full scope of the compromise, and the people behind it.

UK web admin tool infected to access 'gold mine' of data

A Trojanised version of the popular UK-developed PuTTY web admin tool, which can steal highly sensitive data, has been discovered by Symantec.

Tor-fuelled Trojan gets stealthy with steganography

New research by security vendor AVG has revealed that a variant of the well-known Vawtrak banking Trojan is using some unusual methods to hide what it is doing in an attempt to evade detection.

Banking Trojan 'Vawtrak' spotted in the wild

Banking Trojan 'Vawtrak' has been spotted in the wild, and it's 'much improved' compared to a year ago.

Huge spam campaign drops Trojan on UK bank customers

A huge spam campaign has been installing the Dyreza banking Trojan on tens of thousands of UK computers, specifically targeting those with accounts at major banks.

North Korea denies responsibility for Sony hack

'Not us' says N Korea over targeted Sony hack Trojan using Korean language, Korean computers and similarities to previous attack on S Korea.

European arrests highlights danger of teen cyber-crime

School pupils are among 15 EU citizens suspected of using Trojans for crimes such as DDoS attacks and extortion.

New Trojan targets 'happy to help' customer service people

UK and European companies in industries including automotive, finance, energy and telecoms are being attacked by new Trojan malware called 'Carbon Grabber' that steals online banking password and other credentials.

Africa's cybercrime gangs move way beyond 419 scams

African cyber-criminals have expanded far beyond the simple '419' Nigerian scams they are notorious for, and are now using sophisticated botnets, RATs and targeted attack techniques, according to Trend Micro.