Citadel Malware - Security Intelligence

According to security researchers, the AlienSpy RAT is deploying the Citadel banking malware in financial institutions and other types of organizations. Experts warn this type of remote-access Trojan may be one of the toughest yet.

news

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

A research advisory says the AlienSpy RAT is deploying the Citadel malware across financial institutions and stealing data in other organizations.

April 13, 2015 | By Shane Schick

news

IBM Trusteer researchers recently discovered a new configuration of the evasive Citadel malware that is being used to compromise password management and authentication solutions. Strong, unique passwords are vital for keeping systems safe.

article

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

According to IBM Trusteer researchers, there is a new type of Citadel malware that is compromising password management and authentication solutions.

November 19, 2014 | By Dana Tamir

article

Many risk-based authentication risk engines are failing as cybercriminals use a variety of tools and techniques to evade detection and gain access to victims' systems. The industry needs an overhaul and update to keep cybercriminals at bay.

article

Fraud Risk Engines: The Statistics Are Not in Your Favor

The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.

October 1, 2014 | By Etay Maor

article

Tinba malware, one of the most sophisticated financial malware toolkits in the world, has been spotted in the wild targeting a number of financial institutions across the globe. Hackers are staying ahead of researchers to keep attacking enterprises.

article

Tinba Malware Reloaded and Attacking Banks Around the World

IBM Security Trusteer researchers recently discovered a new Tinba variant exhibiting new, exciting features and making waves in an active malware campaign.

September 22, 2014 | By Assaf Regev

article

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

article

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

September 15, 2014 | By Dana Tamir

article

According to IBM Trusteer researchers, Citadel malware is being used to target petrochemical companies in the Middle East. The malware uses a series of techniques to steal information and avoid detection by security controls such as antivirus scanners.

article

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

According to IBM Trusteer researchers, massively distributed Citadel malware is targeting nonfinancial petrochemical companies in the Middle East.

September 15, 2014 | By Dana Tamir

article

HTML injections and scripts used by Bugat malware to target banking applications uses Gameover-Zeus-like (GOZ) techniques. It is unclear whether someone from GOZ moved to Bugat or whether the technique was copied.

article

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

A new Bugat malware variant is using techniques similar to the Gameover Zeus HTML injections to target banking applications and steal user credentials.

August 14, 2014 | By Etay Maor

article

article

Citadel’s New Trick: Persistent Device Remote Control

Citadel, a type of malware, can now persistently have remote control of devices, which is an advanced threat that can affect many victims.

July 29, 2014 | By Etay Maor

article

The Father of Zeus: Kronos Malware Discovered

Researchers at Trusteer, an IBM company, recently discovered the Kronos malware, which offers compatibility with Zeus, in a Russian cyber crime forum.

July 11, 2014 | By Etay Maor

article

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

article

Boleto Malware: Two New Variants Discovered

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

July 10, 2014 | By George Tubin

article

SWEED Threat Actor Uses Typosquatting, UAC Bypasses to Distribute Agent Tesla

UK Government Urges Organizations to Defend Against DNS Hijacking

Telegram, WhatsApp Vulnerability Exposes Media Files to Tampering

Digital Attackers Now Using 16Shop Phishing Kit to Target Amazon Users

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

CISO of Major UK Retailer Weighs in on Enterprise IoT Security

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

I Can’t Believe Mirais: Tracking the Infamous IoT Malware

Threat Intelligence Is the SOC’s Road Map to DNS Security

Taking Over the Overlay: Reconstructing a Brazilian Remote Access Trojan (RAT)

Taking Over the Overlay: What Triggers the AVLay Remote Access Trojan (RAT)?

Podcast: IT’s Eyes and Ears — The Evolving Security Operations Center (SOC)

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Webinar: Protecting Office365 with IBM Cloud Identity and MaaS360

Webinar: Wandera & IBM Introduce the Next Level of Access Management

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Tag: Citadel Malware

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

Fraud Risk Engines: The Statistics Are Not in Your Favor

Tinba Malware Reloaded and Attacking Banks Around the World

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

Citadel’s New Trick: Persistent Device Remote Control

The Father of Zeus: Kronos Malware Discovered

Boleto Malware: Two New Variants Discovered