Citadel Malware - Security Intelligence

According to security researchers, the AlienSpy RAT is deploying the Citadel banking malware in financial institutions and other types of organizations. Experts warn this type of remote-access Trojan may be one of the toughest yet.

news

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

A research advisory says the AlienSpy RAT is deploying the Citadel malware across financial institutions and stealing data in other organizations.

April 13, 2015 | By Shane Schick

news

IBM Trusteer researchers recently discovered a new configuration of the evasive Citadel malware that is being used to compromise password management and authentication solutions. Strong, unique passwords are vital for keeping systems safe.

article

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

According to IBM Trusteer researchers, there is a new type of Citadel malware that is compromising password management and authentication solutions.

November 19, 2014 | By Dana Tamir

article

Many risk-based authentication risk engines are failing as cybercriminals use a variety of tools and techniques to evade detection and gain access to victims' systems. The industry needs an overhaul and update to keep cybercriminals at bay.

article

Fraud Risk Engines: The Statistics Are Not in Your Favor

The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.

October 1, 2014 | By Etay Maor

article

Tinba malware, one of the most sophisticated financial malware toolkits in the world, has been spotted in the wild targeting a number of financial institutions across the globe. Hackers are staying ahead of researchers to keep attacking enterprises.

article

Tinba Malware Reloaded and Attacking Banks Around the World

IBM Security Trusteer researchers recently discovered a new Tinba variant exhibiting new, exciting features and making waves in an active malware campaign.

September 22, 2014 | By Assaf Regev

article

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

article

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

SalesForce is warning its customers that they might have been targeted by the Dyre Trojan. Banking trojans are not just targeting financial organizations.

September 15, 2014 | By Dana Tamir

article

According to IBM Trusteer researchers, Citadel malware is being used to target petrochemical companies in the Middle East. The malware uses a series of techniques to steal information and avoid detection by security controls such as antivirus scanners.

article

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

According to IBM Trusteer researchers, massively distributed Citadel malware is targeting nonfinancial petrochemical companies in the Middle East.

September 15, 2014 | By Dana Tamir

article

HTML injections and scripts used by Bugat malware to target banking applications uses Gameover-Zeus-like (GOZ) techniques. It is unclear whether someone from GOZ moved to Bugat or whether the technique was copied.

article

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

A new Bugat malware variant is using techniques similar to the Gameover Zeus HTML injections to target banking applications and steal user credentials.

August 14, 2014 | By Etay Maor

article

article

Citadel’s New Trick: Persistent Device Remote Control

Citadel, a type of malware, can now persistently have remote control of devices, which is an advanced threat that can affect many victims.

July 29, 2014 | By Etay Maor

article

The Father of Zeus: Kronos Malware Discovered

Researchers at Trusteer, an IBM company, recently discovered the Kronos malware, which offers compatibility with Zeus, in a Russian cyber crime forum.

July 11, 2014 | By Etay Maor

article

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

article

Boleto Malware: Two New Variants Discovered

Researchers have discovered two additional variants of Boleto malware that operate quite differently from the previously discovered Eupuds malware.

July 10, 2014 | By George Tubin

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Citadel Malware

AlienSpy RAT Spreads Internationally, Evades Antivirus Detection

Cybercriminals Use Citadel to Compromise Password Management and Authentication Solutions

Fraud Risk Engines: The Statistics Are Not in Your Favor

Tinba Malware Reloaded and Attacking Banks Around the World

Dyre Banking Trojan Used in APT-Style Attacks Against Enterprises

Massively Distributed Citadel Malware Targets Middle Eastern Petrochemical Organizations

New Variant of Bugat Malware Borrows Lucrative Gameover Zeus Techniques

Citadel’s New Trick: Persistent Device Remote Control

The Father of Zeus: Kronos Malware Discovered

Boleto Malware: Two New Variants Discovered