Citadel Malware - Security Intelligence

According to security researchers, the AlienSpy RAT is deploying the Citadel banking malware in financial institutions and other types of organizations. Experts warn this type of remote-access Trojan may be one of the toughest yet.

news

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

A research advisory says the AlienSpy RAT is deploying the Citadel malware across financial institutions and stealing data in other organizations.

April 13, 2015 | By Shane Schick

news

IBM Trusteer researchers recently discovered a new configuration of the evasive Citadel malware that is being used to compromise password management and authentication solutions. Strong, unique passwords are vital for keeping systems safe.

article

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

According to IBM Trusteer researchers, there is a new type of Citadel malware that is compromising password management and authentication solutions.

November 19, 2014 | By Dana Tamir

article

Many risk-based authentication risk engines are failing as cybercriminals use a variety of tools and techniques to evade detection and gain access to victims' systems. The industry needs an overhaul and update to keep cybercriminals at bay.

article

Fraud Risk Engines: The Statistics Are Not in Your Favor

The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.

October 1, 2014 | By Etay Maor

article

Tinba malware, one of the most sophisticated financial malware toolkits in the world, has been spotted in the wild targeting a number of financial institutions across the globe. Hackers are staying ahead of researchers to keep attacking enterprises.

article

Tinba Malware Reloaded and Attacking Banks Around the World

IBM Security Trusteer researchers recently discovered a new Tinba variant exhibiting new, exciting features and making waves in an active malware campaign.

September 22, 2014 | By Assaf Regev

article

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

article

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

September 15, 2014 | By Dana Tamir

article

According to IBM Trusteer researchers, Citadel malware is being used to target petrochemical companies in the Middle East. The malware uses a series of techniques to steal information and avoid detection by security controls such as antivirus scanners.

article

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

According to IBM Trusteer researchers, massively distributed Citadel malware is targeting nonfinancial petrochemical companies in the Middle East.

September 15, 2014 | By Dana Tamir

article

HTML injections and scripts used by Bugat malware to target banking applications uses Gameover-Zeus-like (GOZ) techniques. It is unclear whether someone from GOZ moved to Bugat or whether the technique was copied.

article

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

A new Bugat malware variant is using techniques similar to the Gameover Zeus HTML injections to target banking applications and steal user credentials.

August 14, 2014 | By Etay Maor

article

article

Citadel’s New Trick: Persistent Device Remote Control

Citadel, a type of malware, can now persistently have remote control of devices, which is an advanced threat that can affect many victims.

July 29, 2014 | By Etay Maor

article

The Father of Zeus: Kronos Malware Discovered

Researchers at Trusteer, an IBM company, recently discovered the Kronos malware, which offers compatibility with Zeus, in a Russian cyber crime forum.

July 11, 2014 | By Etay Maor

article

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

article

Boleto Malware: Two New Variants Discovered

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

July 10, 2014 | By George Tubin

article

GlitchPOS Creator Offers Instructional Video to Make Deploying POS Malware Easier

New Mirai Variant Targets Business Presentation and Display Devices

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Threat Actors Use Fake Copyright Infringement Notifications in Instagram Hacking Campaign

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Security Considerations for Whatever Cloud Service Model You Adopt

At RSAC 2019, It’s Clear the World Needs More Public Interest Technologists

To Improve Critical Infrastructure Security, Bring IT and OT Together

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Spectre, Meltdown and More: What You Need to Know About Hardware Vulnerabilities

Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems

Cryptojacking Rises 450 Percent as Cybercriminals Pivot From Ransomware to Stealthier Attacks

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

X-Force Red in Action: Spotlight on Password Security With Dustin ‘Evil Mog’ Heywood

Podcast: Demystifying the Role of AI in Cybersecurity

Webinar: Under the Radar: March Live Webinar and Demo

Cyberattacks and the Airline Industry: The Strategic Threat Landscape

Webinar: Crypto Agility: Your Super Power Defense

Webinar: Bridging the Gap Between Privacy and Security: Using Technology to Manage Complex Breach Disclosure Regulations

Tag: Citadel Malware

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

Fraud Risk Engines: The Statistics Are Not in Your Favor

Tinba Malware Reloaded and Attacking Banks Around the World

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

Citadel’s New Trick: Persistent Device Remote Control

The Father of Zeus: Kronos Malware Discovered

Boleto Malware: Two New Variants Discovered