- Contact Us
Nir Ashwall, a leading researcher at Versafe writes about a new exploitation technique.Using this technique an attacker can extract sensitive information and even gain administrative privileges.
PHISHING AND MALWARE EXPLOIT IE8 VULNERABILITY
At Versafe we identified a combined attack targeting leading financial institutions. The Malware that exploited the Internet Explorer vulnerability was programmed to seek users’ online banking credentials, credit card details and personal information. The seized information was transmitted to the Trojan control center as encrypted images, through a backdoor that worked invisibly.
ANALYSIS OF THE Zeus/Zbot 2
The Zeus/Zbot 2 is an updated version of the original Zeus Trojan developed in 2007. It targets online banking and e-commerce sites, stealing data via web browsers and sending it to a predefined command-and-control server (or Drop Zone). The second version of the malware introduces some significant changes in the way it affects its victims and in the way it protects itself. The Zeus is probably one of the most proliferate Trojans to have been developed in recent years and remains the leading threat for online financial institutions, on a worldwide scale.