Posts Tagged ‘ZeuS’

bank cardsSeculert’s experts found specialized malware steals details of bank cards of sale terminals under Windows.

The malware, named Dexter, is introduced into the system process iexplore.exe, providing it with a restart when disconnected by hand and prepare a list of active processes, each determines the available memory space, it reads in a local buffer, using the ReadProcessMemory, and exposes dump analysis (parsing ), looking for the information to be copied and sending.

According to the blog post ‘Kaspersky Lab’, Dexter interested in data tracks 1 and 2 plastic cards: the owner’s name, expiration date and card number, including the code of the issuer, class and type of card, account number, sometimes – the country code. This information is sufficient to produce a fake. (more…)

Stop spamExperts warn of malicious mailing, operating general public interest for pre-election debates between the candidates for the U.S. presidency.

Spam filters Websense weed out thousands of malicious emails disguised as a newsletter CNN. Their headline reads: “CNN Breaking News – Mitt Romney Almost President”. According to experts, all the buttons “Full story” in a fake tape “hot” news that is inserted into the body of spam messages lead to sites, redirects, redirect the recipient to exploit the site, the latest version of Blackhole. The purpose of this is to download a cyberattack on the victim versions of ZeuS, using a user-mode rootkit.

In Sophos also found that in case of failure to exploit (Blackhole uses pdf-, jar and exe-files) attackers are turning to the help of social engineering. If appropriate holes in the defense by not found, it displays a page masterfully mimics the download page for Adobe Flash Player. Without any action by the user, it loads a malicious exe file, which it is proposed to start. Experts believe that this additional functionality intruders entered ahead of the public release of Windows 8 and IE 10 version with a user interface Modern UI, does not support such plugins like Java and Flash. (more…)