Hjem » Nyheter » Banking Trojan TrickBot lært å spam og har allerede samlet inn 250 million e-postadresser

Banking Trojan TrickBot lært å spam og har allerede samlet inn 250 million e-postadresser

Ondsinnet program TrickBot, designet for å stjele legitimasjon og kontakter av ofrene, received an additional module “TrickBooster”.

This module allows sending malicious emails on behalf of an infected user.

“TrickBooster gives TrickBot a highly-effective way to spread infection. By sending emails from trusted addresses within an organization TrickBot increases the odds that a would-be victim will open one of its trojanized attachments”, - writes Forbes IS reviewer Lee Mathews.

Samtidig, TrickBot acts very carefullyafter sending letters, the malware removes them from thesentfolder. By doing this, he manages to avoid detection.

Researchers at Deep Instinct, who discovered servers associated with TrickBot spam campaigns, claim that to date, malware operators have managed to collect more than 250 million email addresses.

Among them is considerable amount of Gmail, Yahoo og Hotmail mailboxes, but there are also several emails owned by governmental agencies.

“U.S.-based accounts caught up in TrickBot’s web include staff from the Department of Justice, Department of State, Homeland Security, the Postal Service, as well as the FAA, ATF, IRS and NASA. Email accounts belonging to numerous Canadian and British agencies were also found in the database”, — reported Deep Instinct specialists.

If the user’s computer is already infected with TrickBot, the malware can download the TrickBooster component separately. Etter det, malware will send a list of victim’s contacts to attackers.

Henvisning:

I kjernen, TrickBot is a banking Trojan. The malware is typically distributed via spearphishing emailslike bogus resumes sent to human resources or invoices sent to accounts staff. Those are typically attached in the form of weaponized Microsoft Word or Excel files.

LESE  MyDoom ormen er allerede 15 år gammel, men det er fortsatt aktiv
[Totalt:0    Gjennomsnitt:0/5]

Om Trojan Killer

Carry Trojan Killer Portable på minnepinne. Vær sikker på at du er i stand til å hjelpe din PC motstå eventuelle cyber trusler uansett hvor du går.

Sjekk også

Skript for Clickjacking oppdaget på nettsteder med et publikum av 43 millioner brukere

Skript for Clickjacking oppdaget på områder med et samlet publikum på 43 millioner brukere per dag

For the first time clickjacking attracted the attention of information security experts more than ten

Sårbarhet i Trend Micro

Sårbarhet i Trend Micro Password Manager truer Windows-brukere

SafeBreach forskere funnet en sårbarhet i Trend Micro Password Manager. Ved hjelp av dette sikkerhetsproblemet, …

Legg igjen et svar