1. Welcome Guest! In order to create a new topic or reply to an existing one, you must register first. It is easy and free. Click here to sign up now!.
    Dismiss Notice

Neverquest Banking Trojan Expands List of Targets

Discussion in 'Security Updates' started by snoopy, Jul 17, 2014.

  1. snoopy

    snoopy Registered Members

    Joined:
    Aug 1, 2010
    Messages:
    1,671
    Location:
    At my computer
    Operating System:
    Windows 7
    Computer Brand or Motherboard:
    custom built -
    Snifula telemetry data from Symantec

    Recent variants of the malware analyzed by security researchers show that the cybercriminals operating the Neverquest banking Trojan have focused their attack on banks in the United States and Japan.

    New telemetry results from Symantec inform that the largest number of infections since December 2013, have occurred in these two countries, accounting for more than half of the compromised computers.

    The U.S. recorded 38.51% of the detections while in Japan the infection accounted for 18.21%. Next in line are Germany (11.48%) and United Kingdom (11.19%).

    Identified by Symantec as Snifula, in 2014 the malware recorded a spike in Japan for the month of March.

    Neverquest has been around for a long time, since 2006 and the cybercriminals kept improving its malicious components.

    At the moment, it is capable to log keystrokes, grab screen captures and record video, control the infected machine through remote control software, as well as steal information using man-in-the-browser (MitB) technique.

    Symantec also warns that it can steal digital certificates. Exfiltrating the information is done to command and control servers operated by the threat actors.

    More details & screenshot here: http://news.softpedia.com/news/Neverquest-Banking-Trojan-Expands-List-of-Targets-451157.shtml
     
    snoopy, Jul 17, 2014
    #1

Share This Page