Ramnit - Security Intelligence

Security professional monitoring organized cybercrime trends.

article

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

In 2018, IBM X-Force researchers observed organized cybercrime groups collaborating, rather than competing over turf or even attacking each other, for the first time.

March 20, 2019 | By Limor Kessem

article

Illustration of a Trojan horse coming out of an envelope on a laptop screen: banking Trojans

news

Two Attack Campaigns Infect Brazilian Financial Institution Customers With Banking Trojans

Security researchers recently identified two malware distribution campaigns that infect customers of Brazilian financial institutions with banking Trojans.

November 21, 2018 | By David Bisson

news

Illustration of a financial building on a fish hook: powershell malware

news

Lock and sLoad: PowerShell Malware Downloader Geofences Attacks for Maximum Impact

A PowerShell malware downloader known as sLoad uses geofencing, customized emails and device reconnaissance to identify high-value Trojan targets.

November 1, 2018 | By Douglas Bonderud

news

Ramnit Malware Opens a Back Door to a Dense Proxy Network

news

Ramnit Infects More Than 100,000 Machines in Two Months

A new campaign involving the Ramnit botnet that infected 100,000 computers over a two-month period may foreshadow an even larger attack, researchers warn.

August 23, 2018 | By Shane Schick

news

article

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

April 18, 2018 | By Michelle Alvarez

article

A man rowing a small boat over numerous sunken boats in a body of water.

article

Churn Under the Surface of Global Cybercrime

Global cybercrime actors test their malware in small settings before launching internationally, leaving trails of clues to tip off astute security teams.

March 17, 2017 | By Limor Kessem

article

Ramnit has come a long way since its humble beginnings as a self-replicating worm in 2010. It has been an active banking Trojan ever since it adopted on-the-fly data modules and webinjection capabilities borrowed from the Zeus Trojan in 2011.

article

Ramnit Rears Its Ugly Head Again, Targets Major UK Banks

After an eight-month period of dormancy, the Ramnit Trojan has resurfaced to attack the customers of six major banks in the U.K.

August 26, 2016 | By Limor Kessem

article

Banking Trojans targeting online credentials can be severe cybersecurity issues, especially if the botnet in question is as diverse and resilient as Ramnit. The malware was once thought to be dead but now appears to be making a comeback.

article

The Return of Ramnit: Life After a Law Enforcement Takedown

The Ramnit banking Trojan and botnet was previously taken down by law enforcement, but it appears to have re-emerged as a threat across the world.

December 22, 2015 | By Limor Kessem

article

Out of the Shadows: i2Ninja Malware Exposed

Trusteer's security team has recently identified a new malware variant in a Russian cyber crime forum known as the i2Ninja malware.

November 20, 2013 | By Etay Maor

article

Fraudsters Have Stepped up Their Social Engineering Tactics

If fraudsters can't deceive users, their business fails. Malware now requires perfectionism and hackers are beefing up their social engineering tactics.

April 30, 2013 | By Etay Maor

article

GlitchPOS Creator Offers Instructional Video to Make Deploying POS Malware Easier

New Mirai Variant Targets Business Presentation and Display Devices

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Threat Actors Use Fake Copyright Infringement Notifications in Instagram Hacking Campaign

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Security Considerations for Whatever Cloud Service Model You Adopt

At RSAC 2019, It’s Clear the World Needs More Public Interest Technologists

To Improve Critical Infrastructure Security, Bring IT and OT Together

5 Characteristics of an Effective Incident Response Team: Lessons From the Front Line

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Spectre, Meltdown and More: What You Need to Know About Hardware Vulnerabilities

Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

X-Force Red in Action: Spotlight on Password Security With Dustin ‘Evil Mog’ Heywood

Podcast: Demystifying the Role of AI in Cybersecurity

Webinar: A Treatment Plan for UEM in Healthcare

Webinar: Cloud IAM: Your Key to Digital Transformation

Webinar: Under the Radar: March Live Webinar and Demo

Cyberattacks and the Airline Industry: The Strategic Threat Landscape

Tag: Ramnit

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Two Attack Campaigns Infect Brazilian Financial Institution Customers With Banking Trojans

Lock and sLoad: PowerShell Malware Downloader Geofences Attacks for Maximum Impact

Ramnit Infects More Than 100,000 Machines in Two Months

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Churn Under the Surface of Global Cybercrime

Ramnit Rears Its Ugly Head Again, Targets Major UK Banks

The Return of Ramnit: Life After a Law Enforcement Takedown

Out of the Shadows: i2Ninja Malware Exposed

Fraudsters Have Stepped up Their Social Engineering Tactics