Kaspersky Lab researchers have detected NukeBot – new malware which has been designed to steal the credentials of online banking customers. Earlier versions of the Trojan were known to the security industry as TinyNuke, but lacked the features necessary to launch attacks. The latest versions however, are fully operable, and contain code to target the users of specific banks.

 

Although the appearance of a malware family in the wild is not unusual, the fact that criminals have a ready-to-attack version of the Trojan, means that soon they may initiate a wide-scale malicious campaign, to infect multiple users.

 

As an early warning to its customers and other users, Kaspersky Lab has published a brief analysis of the malware.

 

NukeBot is a banking Trojan. Upon infection it “injects” malicious code into the webpage of an online banking service displayed in a victim’s browser and then steals user data, spoofs their credentials, and more.

 

According to Kaspersky Lab researchers, there are already a number of compiled samples of this Trojan in the wild – shared on underground hacking forums. Most of these are rough, barely operational malware drafts; however, the company’s experts have managed to identify some that pose a real threat.

 

Around 5% of all samples found by Kaspersky Lab were NukeBot’s new ‘combat versions’, which have improved source codes and attacking capacities. Among other things these versions contain injections – specific pieces of code, which mimic parts of user interface of real online banking services.

 

Based on the analysis of injections, Kaspersky Lab experts believe the main targets of the new version of NukeBot are users of several French and US banks.

 

In addition, Kaspersky Lab researchers managed to detect several NukeBot modifications that didn’t have web injection functionality, and were designed to steal mail client and browser passwords.

 

This means that developers of new versions may aim to widen the functionality of this malware family.

 

“While criminals behind recent versions of this malware currently are not actively distributing NukeBot, this may, and likely will, change very soon. We’ve already seen this before with some other malware families: after a short testing period of a ready-to-attack malware, criminals start distributing it widely through infected websites, spam and phishing. So far we have seen NukeBot versions which are ready to attack the customers of at least six banks located in France and the US, however this list of targets looks like only the beginning. The goal of our brief research is to warn the banking community and online banking customers about a potentially emerging threat. We urge interested parties to use the results of our research in order to protect themselves from this threat in advance,” said Sergey Yunakovsky, security expert at Kaspersky Lab.

 

“In 2016, the number of users attacked with malware targeting financial data increased about 30.55% over the previous year, bringing it to close to 1.1 Million attacks. While most of these attacks were mostly towards regular users, approximately 17.7% of the attacks also targeted corporate users. From our Financial Cyberthreats report for 2016, we found that users in Russia, Germany, Japan, India, Vietnam and the US are the ones most often attacked by banking malware. The trends show us that although professional cybercriminal groups have indeed shifted a lot of their attention to targeted attacks against large companies, regular users and smaller firms are still being targeted,” added Sylvia Ng, General Manager at Kaspersky Lab Southeast Asia.

 

For financial organizations providing online banking services:

 

Make sure you have an effective fraud prevention solution in place, so that you can quickly and accurately spot unauthorized use of customer accounts and irregular financial activity.

 

For customers of online banking services:

 

Use an Internet security solution with tailored technologies to protect financial transactions, like Kaspersky Lab’s Safe Money.

 

Regularly run a system scan to check for possible infections.

 

Kaspersky Lab products detect the malware as Trojan-Banker.Win32.TinyNuke.

 

To learn more about the ‘combat versions’ of NukeBot, read the blog post, available on Securelist.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
Remote Access Nightmare: New Backdoors Increase More Than 40% in 2018
Techworld Date Posted: 11 December 2018 4:24 PM | 162 Views
Out of all the new malicious files detected in 2018, the amount that turned out to be backdoors rose by 44%, while the volume of ransomware increased by 43%.. See More
 
Remote Access Nightmare: New Backdoors Increase More Than 40% in 2018
Techworld Date Posted: 4:24 PM | 162 Views
Out of all the new malicious files detected in 2018, the amount that turned out to be backdoors rose by 44%, while the volume of ransomware increased by 43%.See More

 
KINGMAX’S New iKey – Tiny USB Fingerprint Reader 1 Fingerprint to Keep Them All
Techworld Date Posted: 14 October 2017 2:22 PM | 310 Views
Do you have a whole book’s worth of passwords? How do you remember so many? Worry not, KINGMAX “iKey-Tiny USB Fingerprint Reader” is here. . See More
 
KINGMAX’S New iKey – Tiny USB Fingerprint Reader 1 Fingerprint to Keep Them All
Techworld Date Posted: 2:22 PM | 310 Views
Do you have a whole book’s worth of passwords? How do you remember so many? Worry not, KINGMAX “iKey-Tiny USB Fingerprint Reader” is here. See More

 
Amdocs, Amazon Web Services Gear Up Globe for Meaningful Digital Customer Engagement
Techworld Date Posted: 5 September 2018 4:45 PM | 145 Views
Amdocs (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced its collaboration with Amazon Web Services (AWS) in enabling Globe Telecom. See More
 
Amdocs, Amazon Web Services Gear Up Globe for Meaningful Digital Customer Engagement
Techworld Date Posted: 4:45 PM | 145 Views
Amdocs (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced its collaboration with Amazon Web Services (AWS) in enabling Globe TelecomSee More

 
Kaspersky Interactive Protection Simulation Online Game Aims to Improve Cybersecurity Cooperation in PH Companies
Techworld Date Posted: 19 July 2018 3:08 PM | 682 Views
Kaspersky Lab conducted its first Kaspersky Interactive Protection Simulation Online training (KIPS Online) with the local technology media recently to highlight the importance of teamwork in corporate cybersecurity.   KIPS Online is a valuable.... See More
 
Kaspersky Interactive Protection Simulation Online Game Aims to Improve Cybersecurity Cooperation in PH Companies
Techworld Date Posted: 3:08 PM | 682 Views
Kaspersky Lab conducted its first Kaspersky Interactive Protection Simulation Online training (KIPS Online) with the local technology media recently to highlight the importance of teamwork in corporate cybersecurity.   KIPS Online is a valuable...See More

 
ADATA to Showcase Its Latest Innovations at IFA 2018
Techworld Date Posted: 23 August 2018 2:03 PM | 396 Views
ADATA Technology, a leading manufacturer of high-performance DRAM modules and NAND flash products, has announced that it will be showcasing its latest products and solutions at IFA 2018 in Berlin. Among the products to.... See More
 
ADATA to Showcase Its Latest Innovations at IFA 2018
Techworld Date Posted: 2:03 PM | 396 Views
ADATA Technology, a leading manufacturer of high-performance DRAM modules and NAND flash products, has announced that it will be showcasing its latest products and solutions at IFA 2018 in Berlin. Among the products to...See More

 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 23 September 2017 11:26 AM | 363 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4.... See More
 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 11:26 AM | 363 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4...See More

 
Your Digital Identity Could Be on Sale for Less than $50 – New Dark Web Research from Kaspersky Lab Shows
Techworld Date Posted: 6 November 2018 4:29 PM | 167 Views
While many of us have heard of, or even fallen victim to, cybercrimes such as data and identity theft, it seems that relatively few know the value of the information stolen from us.. See More
 
Your Digital Identity Could Be on Sale for Less than $50 – New Dark Web Research from Kaspersky Lab Shows
Techworld Date Posted: 4:29 PM | 167 Views
While many of us have heard of, or even fallen victim to, cybercrimes such as data and identity theft, it seems that relatively few know the value of the information stolen from us.See More

 
Kaspersky Lab Appeals U.S. Department of Homeland Security Debarment
Techworld Date Posted: 19 December 2017 11:46 AM | 290 Views
Kaspersky Lab announced today that it is seeking an appeal in federal court of U.S. Department of Homeland Security’s (DHS) decision on Binding Operational Directive 17-01 banning the use of the company’s products in.... See More
 
Kaspersky Lab Appeals U.S. Department of Homeland Security Debarment
Techworld Date Posted: 11:46 AM | 290 Views
Kaspersky Lab announced today that it is seeking an appeal in federal court of U.S. Department of Homeland Security’s (DHS) decision on Binding Operational Directive 17-01 banning the use of the company’s products in...See More

 
Five Reasons to Upgrade to the New Samsung Galaxy S10
Techworld Date Posted: 2 April 2019 4:02 PM | 60 Views
Dubbed as the “next generation of Galaxy,” the S10 series merges functional and visually compelling aesthetic with powerful features designed to meet the demands of a mobile-centric lifestyle. Still on the fence about upgrading.... See More
 
Five Reasons to Upgrade to the New Samsung Galaxy S10
Techworld Date Posted: 4:02 PM | 60 Views
Dubbed as the “next generation of Galaxy,” the S10 series merges functional and visually compelling aesthetic with powerful features designed to meet the demands of a mobile-centric lifestyle. Still on the fence about upgrading...See More

 
Kingston and Authorized Partners to Bring High-Quality Storage Solutions to the Philippines
Techworld Date Posted: 22 March 2019 9:45 AM | 103 Views
Kingston Technology, a world leader in memory storage products and technology solutions, has teamed up with channel partners to promote the authorized partner program in the Philippines. Ranked as the World’s No. 1 memory.... See More
 
Kingston and Authorized Partners to Bring High-Quality Storage Solutions to the Philippines
Techworld Date Posted: 9:45 AM | 103 Views
Kingston Technology, a world leader in memory storage products and technology solutions, has teamed up with channel partners to promote the authorized partner program in the Philippines. Ranked as the World’s No. 1 memory...See More


Power by

Download Free AZ | Free Wordpress Themes