IBM X-Force Research discovered a new variant of Zberp that evades API threat detection tools using a code injection technique it borrowed from Carberp.
Malware-makers have taken key parts of Carberp and Zeus to spawn the Bolek banking Trojan, which aims to steal confidential user information.
Researchers at Trusteer, an IBM company, recently discovered the Kronos malware, which offers compatibility with Zeus, in a Russian cyber crime forum.
Recent malware trends to note include the evolution, maturation and diversification of the attacks and fraud schemes they facilitate.
Despite Carberp malware designed to bypass Trusteer Rapport defenses, the security system has held up against attacks made by cyber criminals.
Russian fraud forums abound with exchanges of malicious code. Recently, a forum member has been found selling the Carberp source code for $50,000.
A new configuration of the Carberp Trojan targets Facebook users, committing financial fraud by asking them for e-cash to unlock their account.
Post-transaction fraud schemes take advantage of the fact that we often lose track of our spending during the holidays.