Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.
XMRig is popular among cybercriminals because it is open source, meaning threat actors can make relatively simple changes to its code to convert the tool into a cryptojacking mechanism.
Global cybercrime actors test their malware in small settings before launching internationally, leaving trails of clues to tip off astute security teams.
For the first time, IBM X-Force Researchers reported Zeus Sphinx activity targeting banks and financial institutions in Canada and Australia.
IBM X-Force researchers uncovered the first Zeus Sphinx attacks in Brazil, which target online banking and payment services in Brazil's top banks.
Malware-makers have taken key parts of Carberp and Zeus to spawn the Bolek banking Trojan, which aims to steal confidential user information.
A new version of the Zeus banking Trojan was discovered targeting French financial institutions, and its developers may be planning to take it global.
IBM Security X-Force researchers have discovered instances of the Kronos banking Trojan and Zeus Sphinx malware being used by cybercriminals in the wild.
Source code for the builder and control panel of the ZeusVM malware has been leaked online, creating powerful tools for would-be cybercriminals.
The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.