HackDig : Dig high-quality web security articles for hackers

US deported NeverQuest operator Stanislav Vitaliyevich Lisov to Russia

The United States has deported the author of NeverQuest banking malware, the computer programmer Stanislav Vitaliyevich Lisov to Russia.  The United States has deported the computer programmer Stanislav Vitaliyevich Lisov (35) to Russia, he is the author of NeverQuest banking malware, Lisov was arrested in January 2017 at the Barcelona airport by
Publish At:2020-06-21 21:32 | Read:1279 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware hacking news infor

Zeus Sphinx Pushes Empty Configuration Files — What Has the Sphinx Got Cooking?

Lately, IBM X-Force Research has seen the Zeus Sphinx Trojan go through a targetless phase, an exceedingly rare occurrence in the cybercrime arena. Recent Zeus Sphinx samples have fetched configuration files in which all the target URLs were removed. This means that while Sphinx infection campaigns continue and the malware can infect new machines, it remains
Publish At:2017-06-15 13:50 | Read:5543 | Comments:0 | Tags:Banking & Financial Services Fraud Protection Malware Threat

Neverquest Gang Takes Leave — Is It the End of the Quest?

I’ll bet no one is missing the Neverquest Trojan, and maybe that’s why many have not even realized one of the top cybergang-operated malware codes has taken a substantial plunge this year. The Neverquest Trojan, a consistent occupant of the top 10 most active banking Trojans in the world, has suffered a blow due to the arrest of one of its allege
Publish At:2017-05-05 01:55 | Read:6825 | Comments:0 | Tags:Banking & Financial Services Fraud Protection Malware Threat

The author of the NeverQuest banking Trojan arrested in Spain

The Spanish law enforcement has arrested an alleged Russian Vxer suspected of developing the infamous Neverquest banking Trojan. Today I report another success of law enforcement, the Spanish police have arrested an alleged Russian Vxer suspected of developing the infamous Neverquest banking Trojan. The malware was developed to target financial institutions
Publish At:2017-01-22 09:40 | Read:4414 | Comments:0 | Tags:Breaking News Cyber Crime Malware banking trojan Cybercrime

Banking Malware Vawtrak Spotted Using Tor2Web

Developers behind the banking Trojan Vawtrak have begun obscuring some of their servers with Tor2Web, a move that’s added another degree of difficulty when it comes to uncovering their activity.To this point the malware’s techniques –  its evolution beyond banking websites, ability to break encryption, and steal login credentials – have been well
Publish At:2015-06-09 13:45 | Read:4261 | Comments:0 | Tags:Malware Web Security Banking trojans Fortinet malware Neverq

Like a Nesting Doll, Vawtrak Malware Has Many Layers

Researchers have peeled back more layers on Vawtrak, a relatively new banking Trojan so complex that those who have taken it apart have likened it to a Matryoshka, or Russian nesting doll.Virus Bulletin published a deep dive on the malware penned by Raul Alvarez, a researcher with Fortinet, yesterday.Like a set of dominos, the malware involves a series of st
Publish At:2015-01-21 16:05 | Read:3590 | Comments:0 | Tags:Malware Vulnerabilities banking trojan Fortinet Neverquest T

New Neverquest Variant Spotted in the Wild

IBM Trusteer researchers observed a new variant of the Neverquest malware over this past November. We observed a large increase in infection numbers, which led us to discover the updated threat. This new variant performs two new major changes, with a modified installation process and a new communication pattern. This variant targets financial institutions wo
Publish At:2014-12-05 22:10 | Read:4571 | Comments:0 | Tags:Malware banking trojan Chanitor Finanacial Malware Neverques

Neverquest Trojan Adds New Targets, Capabilities

Researchers have found some recent modifications to the Neverquest banking Trojan that indicate the malware is no longer just targeting online banking sites, but also is going after social media, retailers and some game portals. The new changes also give the Trojan the ability to insert extra fields into targeted Web forms in order to steal PINs and other se
Publish At:2014-09-05 04:00 | Read:3241 | Comments:0 | Tags:Malware Web Security banking trojan Gozi malware Neverquest

Snifula Banking Trojan Back to Target Japanese Regional Financial Institutions

Symantec Security Response has found that a new variant of Trojan.Snifula (Neverquest) is targeting more than 30 Japanese financial institutions, including 12 regional banks. The threat first appeared in 2006 and is used to steal victims’ financial information from specific banking sites through man-in-the-browser (MITB) techniques. Snifula’s new
Publish At:2014-08-15 01:11 | Read:4133 | Comments:0 | Tags:Security Security Response Endpoint Protection (AntiVirus) b


Tag Cloud