Security Researchers Have Uncovered the Infrastructure Behind One of Largest and Most Voracious Banking Trojan Networks Uncovered to Date.
The "Qbot" (a.k.a. "Qakbot") Botnet apparently Infected 500,000 Systems before Sniffing "Conversations" – including Account Credentials – for a Whopping 800,000 Online Banking Transactions. More than Half (59%) of Sniffed Sessions were Reportedly from Accounts at 5 of the Largest US Banks.
The Researchers Said Online Banking Credentials for Banks in Europe were also Targeted by the Russian-Speaking Cybercrime Group Behind the Scam, which was Uncovered by Email Security Outfit, Proofpoint.
The Security Firm Said the Attackers Launched the Assault from Compromised WordPress Websites Using Drive-by-Download Style Attack Tactics. Windows XP Clients Comprised 52% of the Infected Systems in the Cybercrime Group’s Botnet.
The Cybercrime Group also Made Money by Selling Access to Compromised Systems to Other Ne’er do Wells. More Details on the Research Can be Found in Proofpoint’s Report here (2) (Registration Required).
Info Sources:
http://www.proofpoint.com/threatinsight/posts/the-insider-view-of-a-russian-cybercrime-infrastructure.php
http://www.proofpoint.com/id/russian-cybercrime-analysis/index.php
0 comentários:
Enviar um comentário