Tuesday, January 31, 2012

Trend Micro Crimeware Report 2Q 2011


Here is the Trend Micro Crimeware  Report for 2Q 2011:
http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/reports/rpt_2q2011-crimeware.pdf

Major highlights:

*Crimeware toolkits Zeus and SpyEye continued to evolve.  Zeus-SpeEye merger has resulted in new and improved ZBOT variants.
*Banking trojans are on the rise, MAL_BANKER topping the list, with BKDR_QAKBOT.SMG and BKDR_PAPRAS.SME.QAKBOT following.
*Stolen user information and banking credentials were hot commodities in the cyber underground.
*CARBERP variants targeted government offices, schools, universities and financial institutions  hook network APIs in WININET.DLL enabling them to monitor user's browsing activities, to download configuration files and to receive malicious commands from remote servers.
*SpyEye 1.3.4.x enhancements include a MySQL database to store as  blobs (binary large objects) the files uploaded by users.

In April 2011, the CoreFlood botnet was taken down  by the FBI with help from security researchers.

-jp
Posted by at
Labels:

1 comment:

  1. Ponnoly BlogsJanuary 31, 2012 at 8:04 PM

    1Q 2011 Crimeware Report is at:
    http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/reports/rpt_1q2011-crimeware.pdfq1

    ReplyDelete

Subscribe to: Post Comments (Atom)