Zeus Malware - Security Intelligence

article

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

April 18, 2018 | By Michelle Alvarez

article

GPU cards set up to mine cryptocurrency.

article

XMRig: Father Zeus of Cryptocurrency Mining Malware?

XMRig is popular among cybercriminals because it is open source, meaning threat actors can make relatively simple changes to its code to convert the tool into a cryptojacking mechanism.

February 26, 2018 | By Limor Kessem

article

A man rowing a small boat over numerous sunken boats in a body of water.

article

Churn Under the Surface of Global Cybercrime

Global cybercrime actors test their malware in small settings before launching internationally, leaving trails of clues to tip off astute security teams.

March 17, 2017 | By Limor Kessem

article

A businessman spinning a globe on his desktop.

article

Around the World With Zeus Sphinx: From Canada to Australia and Back

For the first time, IBM X-Force Researchers reported Zeus Sphinx activity targeting banks and financial institutions in Canada and Australia.

January 26, 2017 | By Limor Kessem

article

The timing of Sphinx's migration to Brazil, while the country is hosting a global sporting event, hardly appears to be a coincidence. Cybercriminals are known to increase their efforts during sporting events, taking advantage of increased online activity.

article

Brazil Can’t Catch a Break: After Panda Comes the Sphinx

IBM X-Force researchers uncovered the first Zeus Sphinx attacks in Brazil, which target online banking and payment services in Brazil's top banks.

August 16, 2016 | By Limor Kessem

article

The Bolek banking Trojan is the offspring of both Carberp and Zeus, and it has taken pieces from both of these malware in an effort to become the most dangerous tool possible. These top features help the Trojan steal user credentials.

news

Carberp/Zeus Malware Mashup Spawns Sophisticated Bolek Banking Trojan

Malware-makers have taken key parts of Carberp and Zeus to spawn the Bolek banking Trojan, which aims to steal confidential user information.

June 14, 2016 | By Douglas Bonderud

news

Security researchers recently noticed a new variant of the Zeus banking Trojan attacking French financial institutions. Called Atmos, there's a good chance developers are testing the new attack and will take it global sometime in the near future.

news

New Polymorphic Zeus Banking Trojan Demands Herculean Response

A new version of the Zeus banking Trojan was discovered targeting French financial institutions, and its developers may be planning to take it global.

April 14, 2016 | By Douglas Bonderud

news

Security researchers recently discovered new variants of Zeus Sphinx and the Kronos banking Trojan in the wild, where they are targeting banks in the U.K. and a few other countries. This malware aims to steal user credentials for fraudulent transactions.

article

UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks

IBM Security X-Force researchers have discovered instances of the Kronos banking Trojan and Zeus Sphinx malware being used by cybercriminals in the wild.

October 2, 2015 | By Limor Kessem

article

Source code for the ZeusVM builder is posed to allow cybercriminals to create their own versions of the malware for free. While this is a risk for organizations, the leaked code also provides an opportunity for security teams to strengthen defenses.

news

Data Leak Could Let Almost Anyone Make ZeusVM Malware Variant

Source code for the builder and control panel of the ZeusVM malware has been leaked online, creating powerful tools for would-be cybercriminals.

July 7, 2015 | By Shane Schick

news

Many risk-based authentication risk engines are failing as cybercriminals use a variety of tools and techniques to evade detection and gain access to victims' systems. The industry needs an overhaul and update to keep cybercriminals at bay.

article

Fraud Risk Engines: The Statistics Are Not in Your Favor

The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.

October 1, 2014 | By Etay Maor

article

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Zeus Malware

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

XMRig: Father Zeus of Cryptocurrency Mining Malware?

Churn Under the Surface of Global Cybercrime

Around the World With Zeus Sphinx: From Canada to Australia and Back

Brazil Can’t Catch a Break: After Panda Comes the Sphinx

Carberp/Zeus Malware Mashup Spawns Sophisticated Bolek Banking Trojan

New Polymorphic Zeus Banking Trojan Demands Herculean Response

UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks

Data Leak Could Let Almost Anyone Make ZeusVM Malware Variant

Fraud Risk Engines: The Statistics Are Not in Your Favor