Zeus Malware - Security Intelligence

article

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

April 18, 2018 | By Michelle Alvarez

article

GPU cards set up to mine cryptocurrency.

article

XMRig: Father Zeus of Cryptocurrency Mining Malware?

XMRig is popular among cybercriminals because it is open source, meaning threat actors can make relatively simple changes to its code to convert the tool into a cryptojacking mechanism.

February 26, 2018 | By Limor Kessem

article

A man rowing a small boat over numerous sunken boats in a body of water.

article

Churn Under the Surface of Global Cybercrime

Global cybercrime actors test their malware in small settings before launching internationally, leaving trails of clues to tip off astute security teams.

March 17, 2017 | By Limor Kessem

article

A businessman spinning a globe on his desktop.

article

Around the World With Zeus Sphinx: From Canada to Australia and Back

For the first time, IBM X-Force Researchers reported Zeus Sphinx activity targeting banks and financial institutions in Canada and Australia.

January 26, 2017 | By Limor Kessem

article

The timing of Sphinx's migration to Brazil, while the country is hosting a global sporting event, hardly appears to be a coincidence. Cybercriminals are known to increase their efforts during sporting events, taking advantage of increased online activity.

article

Brazil Can’t Catch a Break: After Panda Comes the Sphinx

IBM X-Force researchers uncovered the first Zeus Sphinx attacks in Brazil, which target online banking and payment services in Brazil's top banks.

August 16, 2016 | By Limor Kessem

article

The Bolek banking Trojan is the offspring of both Carberp and Zeus, and it has taken pieces from both of these malware in an effort to become the most dangerous tool possible. These top features help the Trojan steal user credentials.

news

Carberp/Zeus Malware Mashup Spawns Sophisticated Bolek Banking Trojan

Malware-makers have taken key parts of Carberp and Zeus to spawn the Bolek banking Trojan, which aims to steal confidential user information.

June 14, 2016 | By Douglas Bonderud

news

Security researchers recently noticed a new variant of the Zeus banking Trojan attacking French financial institutions. Called Atmos, there's a good chance developers are testing the new attack and will take it global sometime in the near future.

news

New Polymorphic Zeus Banking Trojan Demands Herculean Response

A new version of the Zeus banking Trojan was discovered targeting French financial institutions, and its developers may be planning to take it global.

April 14, 2016 | By Douglas Bonderud

news

Security researchers recently discovered new variants of Zeus Sphinx and the Kronos banking Trojan in the wild, where they are targeting banks in the U.K. and a few other countries. This malware aims to steal user credentials for fraudulent transactions.

article

UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks

IBM Security X-Force researchers have discovered instances of the Kronos banking Trojan and Zeus Sphinx malware being used by cybercriminals in the wild.

October 2, 2015 | By Limor Kessem

article

Source code for the ZeusVM builder is posed to allow cybercriminals to create their own versions of the malware for free. While this is a risk for organizations, the leaked code also provides an opportunity for security teams to strengthen defenses.

news

Data Leak Could Let Almost Anyone Make ZeusVM Malware Variant

Source code for the builder and control panel of the ZeusVM malware has been leaked online, creating powerful tools for would-be cybercriminals.

July 7, 2015 | By Shane Schick

news

Many risk-based authentication risk engines are failing as cybercriminals use a variety of tools and techniques to evade detection and gain access to victims' systems. The industry needs an overhaul and update to keep cybercriminals at bay.

article

Fraud Risk Engines: The Statistics Are Not in Your Favor

The following is a look into how authentication risk engines are designed and the root cause for their failure in detecting today's cybercriminals.

October 1, 2014 | By Etay Maor

article

SWEED Threat Actor Uses Typosquatting, UAC Bypasses to Distribute Agent Tesla

UK Government Urges Organizations to Defend Against DNS Hijacking

Telegram, WhatsApp Vulnerability Exposes Media Files to Tampering

Digital Attackers Now Using 16Shop Phishing Kit to Target Amazon Users

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

CISO of Major UK Retailer Weighs in on Enterprise IoT Security

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

I Can’t Believe Mirais: Tracking the Infamous IoT Malware

Threat Intelligence Is the SOC’s Road Map to DNS Security

Taking Over the Overlay: Reconstructing a Brazilian Remote Access Trojan (RAT)

Taking Over the Overlay: What Triggers the AVLay Remote Access Trojan (RAT)?

Podcast: IT’s Eyes and Ears — The Evolving Security Operations Center (SOC)

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Webinar: Protecting Office365 with IBM Cloud Identity and MaaS360

Webinar: Wandera & IBM Introduce the Next Level of Access Management

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Tag: Zeus Malware

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

XMRig: Father Zeus of Cryptocurrency Mining Malware?

Churn Under the Surface of Global Cybercrime

Around the World With Zeus Sphinx: From Canada to Australia and Back

Brazil Can’t Catch a Break: After Panda Comes the Sphinx

Carberp/Zeus Malware Mashup Spawns Sophisticated Bolek Banking Trojan

New Polymorphic Zeus Banking Trojan Demands Herculean Response

UK Banks Hit With New Zeus Sphinx Variant and Renewed Kronos Banking Trojan Attacks

Data Leak Could Let Almost Anyone Make ZeusVM Malware Variant

Fraud Risk Engines: The Statistics Are Not in Your Favor