Viruses/Worms News

Trojan malware sends stolen user credentials via IM

Tuesday, September 1, 2009

Variants of a Trojan malware called Zeus or ZBot send out stolen user credentials via the Jabber instant messaging (IM) open protocol, allowing cybercriminals to hijack PCs almost as soon as they are infected.

According to web security researchers at the RSA FraudAction Research Lab, Jabber IM modules that have been built into Zeus/ZBot Trojans were configured to extract stolen user credentials from the Trojan's drop server database, which were sent instantly to the cybercriminal.

Zeus/ZBot variants flooded cyberspace on July 24 with record levels, according to security firm Fortinet. One variant spread through HTML/Agent.E, an attachment in a phishing spam email which used the eCard hook to potentially steal and sell personal consumer information.

In its August threat report, Fortinet reported that cybercriminals continued to use older techniques like the eCard scam, even while adapting to new web security vulnerabilities.

Of 168 new vulnerabilities detected, 62 were reported to be actively exploited in the wild, with a large portion of these attacked vulnerabilities rated as critical.

Two in-the-wild vulnerabilities in Microsoft Office Web Components (MS09-043) and in Adobe Reader/Flash (APSA09-03) were detected to have consistent exploit activity during this period, as well.
ADNFCR-1765-ID-19340022-ADNFCR

Related News:

Researchers: Malware attackers reloading for Windows 7 assaults - 11.20.2009
A report issued yesterday by computer security firm Symantec says that hackers are undoubtedly reworking their malicious software to target Windows 7 as more users switch to the latest version of Microsoft's flagship OS.

Want to secure your iPhone against intruders? There's an app for that - 11.20.2009
Cisco Systems today released a free iPhone app that will allow users to receive security updates and the latest news on web threats, as well as aggregating additional security related content for iPhone users.

Microsoft says 64-bit versions of Windows are harder to infect - 11.19.2009
Members of Microsoft's security team write that 64-bit editions of Windows are much less susceptible to malware attacks, but outside experts caution that 64-bit malware could be the next big thing in cyber crime.

Google coming down hard on malicious advertisers - 11.18.2009
Search giant Google has said that it will lay down the law where scam artists and malvertisers are concerned: Permanent bans will be the result of any fraudulent activity on the company's AdWords service.

If at first you don't succeed: Most malware protection fails first round of certification testing - 11.17.2009
A study performed by security testing and research firm ICSA Labs says that almost four out of five computer security products fail their first certification tests and need to be retooled for a second and sometimes a third attempt.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now