Kaspersky Lab researchers have detected NukeBot – new malware which has been designed to steal the credentials of online banking customers. Earlier versions of the Trojan were known to the security industry as TinyNuke, but lacked the features necessary to launch attacks. The latest versions however, are fully operable, and contain code to target the users of specific banks.

 

Although the appearance of a malware family in the wild is not unusual, the fact that criminals have a ready-to-attack version of the Trojan, means that soon they may initiate a wide-scale malicious campaign, to infect multiple users.

 

As an early warning to its customers and other users, Kaspersky Lab has published a brief analysis of the malware.

 

NukeBot is a banking Trojan. Upon infection it “injects” malicious code into the webpage of an online banking service displayed in a victim’s browser and then steals user data, spoofs their credentials, and more.

 

According to Kaspersky Lab researchers, there are already a number of compiled samples of this Trojan in the wild – shared on underground hacking forums. Most of these are rough, barely operational malware drafts; however, the company’s experts have managed to identify some that pose a real threat.

 

Around 5% of all samples found by Kaspersky Lab were NukeBot’s new ‘combat versions’, which have improved source codes and attacking capacities. Among other things these versions contain injections – specific pieces of code, which mimic parts of user interface of real online banking services.

 

Based on the analysis of injections, Kaspersky Lab experts believe the main targets of the new version of NukeBot are users of several French and US banks.

 

In addition, Kaspersky Lab researchers managed to detect several NukeBot modifications that didn’t have web injection functionality, and were designed to steal mail client and browser passwords.

 

This means that developers of new versions may aim to widen the functionality of this malware family.

 

“While criminals behind recent versions of this malware currently are not actively distributing NukeBot, this may, and likely will, change very soon. We’ve already seen this before with some other malware families: after a short testing period of a ready-to-attack malware, criminals start distributing it widely through infected websites, spam and phishing. So far we have seen NukeBot versions which are ready to attack the customers of at least six banks located in France and the US, however this list of targets looks like only the beginning. The goal of our brief research is to warn the banking community and online banking customers about a potentially emerging threat. We urge interested parties to use the results of our research in order to protect themselves from this threat in advance,” said Sergey Yunakovsky, security expert at Kaspersky Lab.

 

“In 2016, the number of users attacked with malware targeting financial data increased about 30.55% over the previous year, bringing it to close to 1.1 Million attacks. While most of these attacks were mostly towards regular users, approximately 17.7% of the attacks also targeted corporate users. From our Financial Cyberthreats report for 2016, we found that users in Russia, Germany, Japan, India, Vietnam and the US are the ones most often attacked by banking malware. The trends show us that although professional cybercriminal groups have indeed shifted a lot of their attention to targeted attacks against large companies, regular users and smaller firms are still being targeted,” added Sylvia Ng, General Manager at Kaspersky Lab Southeast Asia.

 

For financial organizations providing online banking services:

 

Make sure you have an effective fraud prevention solution in place, so that you can quickly and accurately spot unauthorized use of customer accounts and irregular financial activity.

 

For customers of online banking services:

 

Use an Internet security solution with tailored technologies to protect financial transactions, like Kaspersky Lab’s Safe Money.

 

Regularly run a system scan to check for possible infections.

 

Kaspersky Lab products detect the malware as Trojan-Banker.Win32.TinyNuke.

 

To learn more about the ‘combat versions’ of NukeBot, read the blog post, available on Securelist.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
ASUS Republic of Gamers Announces ROG Swift PG65 Big Format Gaming Display with NVIDIA G-SYNC at CES 2018
Techworld Date Posted: 8 January 2018 4:30 PM | 236 Views
ASUS Republic of Gamers (ROG) today announced that it will unveil the new ROG Swift PG65 big format gaming display (BFGD) with NVIDIA® G-SYNC® at CES® 2018 in Las Vegas.. See More
 
ASUS Republic of Gamers Announces ROG Swift PG65 Big Format Gaming Display with NVIDIA G-SYNC at CES 2018
Techworld Date Posted: 4:30 PM | 236 Views
ASUS Republic of Gamers (ROG) today announced that it will unveil the new ROG Swift PG65 big format gaming display (BFGD) with NVIDIA® G-SYNC® at CES® 2018 in Las Vegas.See More

 
Kaspersky Lab Publishes Results of Internal Investigation Related to Incident with Equation APT Source Code
Techworld Date Posted: 17 November 2017 11:24 AM | 204 Views
In early October, a story was published in The Wall Street Journal alleging Kaspersky Lab software was used to download classified data from an NSA employee’s home computer. . See More
 
Kaspersky Lab Publishes Results of Internal Investigation Related to Incident with Equation APT Source Code
Techworld Date Posted: 11:24 AM | 204 Views
In early October, a story was published in The Wall Street Journal alleging Kaspersky Lab software was used to download classified data from an NSA employee’s home computer. See More

 
ASUS Announces Z370 Series Motherboards
Techworld Date Posted: 30 September 2017 9:37 AM | 364 Views
The arrival of the 8th Generation Intel CoreTM processors marks the latest launch of a new consumer-oriented desktop platform this year, one with unprecedented power and responsiveness. Otherwise known as Coffee Lake, these new.... See More
 
ASUS Announces Z370 Series Motherboards
Techworld Date Posted: 9:37 AM | 364 Views
The arrival of the 8th Generation Intel CoreTM processors marks the latest launch of a new consumer-oriented desktop platform this year, one with unprecedented power and responsiveness. Otherwise known as Coffee Lake, these new...See More

 
Kaspersky Lab Warns of Dangers of ‘Balkanisation’ at Its 4th APAC Cyber Security Summit
Techworld Date Posted: 26 September 2018 4:00 PM | 106 Views
Kaspersky Lab presented the cybersecurity risks that can result from Balkanisation in cyberspace — the fragmentation of the world wide web, during its 4th Asia Pacific (APAC) Cyber Security Weekend in Siem Reap, Cambodia.. See More
 
Kaspersky Lab Warns of Dangers of ‘Balkanisation’ at Its 4th APAC Cyber Security Summit
Techworld Date Posted: 4:00 PM | 106 Views
Kaspersky Lab presented the cybersecurity risks that can result from Balkanisation in cyberspace — the fragmentation of the world wide web, during its 4th Asia Pacific (APAC) Cyber Security Weekend in Siem Reap, Cambodia.See More

 
Fortinet’s Newest Sandbox Solution Recommended by NSS Labs
Techworld Date Posted: 26 October 2017 1:39 PM | 874 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Breach Detection System (BDS) group test.. See More
 
Fortinet’s Newest Sandbox Solution Recommended by NSS Labs
Techworld Date Posted: 1:39 PM | 874 Views
Fortinet® (NASDAQ: FTNT), the global leader in high-performance cybersecurity solutions, today announced the results of the latest NSS Labs Breach Detection System (BDS) group test.See More

 
Master SSDs the Easy Way with the Plextor Newly-Launched Plextool NVMe Edition
Techworld Date Posted: 31 May 2018 10:25 AM | 232 Views
PLEXTOR, a global leading brand of high-performance digital storage devices, has launched the latest generation of the SSD toolbox, the Plextool NVMe Edition, which is designed for Plextor NVMe SSDs. The new toolbox provides.... See More
 
Master SSDs the Easy Way with the Plextor Newly-Launched Plextool NVMe Edition
Techworld Date Posted: 10:25 AM | 232 Views
PLEXTOR, a global leading brand of high-performance digital storage devices, has launched the latest generation of the SSD toolbox, the Plextool NVMe Edition, which is designed for Plextor NVMe SSDs. The new toolbox provides...See More

 
PLDT Home Brings PH’s First All-in-One Video-on-demand, Pay TV and Free Channels Streaming Device
Techworld Date Posted: 9 August 2017 2:35 PM | 188 Views
PLDT Home continues to prove why it is the country's digital services leader with its next-generation entertainment device: the Roku PoweredTM TVolution. Developed in partnership with Roku, the Silicon Valley corporation that pioneered the concept.... See More
 
PLDT Home Brings PH’s First All-in-One Video-on-demand, Pay TV and Free Channels Streaming Device
Techworld Date Posted: 2:35 PM | 188 Views
PLDT Home continues to prove why it is the country's digital services leader with its next-generation entertainment device: the Roku PoweredTM TVolution. Developed in partnership with Roku, the Silicon Valley corporation that pioneered the concept...See More

 
CES 2018: Kingston to Showcase Upcoming Mobile Lifestyle Products and More
Techworld Date Posted: 11 January 2018 10:00 AM | 189 Views
Kingston, a world leader in memory storage products and technology solutions, is set to share its latest and upcoming products at CES®.. See More
 
CES 2018: Kingston to Showcase Upcoming Mobile Lifestyle Products and More
Techworld Date Posted: 10:00 AM | 189 Views
Kingston, a world leader in memory storage products and technology solutions, is set to share its latest and upcoming products at CES®.See More

 
Sony’s Xperia XZ Premium Gets Android 8.0 Oreo Upgrade
Techworld Date Posted: 4 December 2017 4:42 PM | 315 Views
Sony’s Xperia XZ Premium is getting an OS upgrade. The Android 8.0 Oreo update is now available for Sony’s flagship smartphone but it also goes beyond the usual as it brings with it cool.... See More
 
Sony’s Xperia XZ Premium Gets Android 8.0 Oreo Upgrade
Techworld Date Posted: 4:42 PM | 315 Views
Sony’s Xperia XZ Premium is getting an OS upgrade. The Android 8.0 Oreo update is now available for Sony’s flagship smartphone but it also goes beyond the usual as it brings with it cool...See More

PCBG Gaming Crew
2017 Mid-Season Invitational Mania
Techworld • By: PCBG Gaming Crew | Date Posted: 12 April 2017 10:51 AM | 936 Views
As the first half of major league tournaments all over the globe has been exhausted and judged, the 2017 Mid-Season Invitational will begin on the 29th of April with massive hungry league fans waiting.... See More
PCBG Gaming Crew
2017 Mid-Season Invitational Mania
Techworld • By: PCBG Gaming Crew | Date Posted: 10:51 AM | 936 Views
As the first half of major league tournaments all over the globe has been exhausted and judged, the 2017 Mid-Season Invitational will begin on the 29th of April with massive hungry league fans waiting...See More


Power by

Download Free AZ | Free Wordpress Themes