RSS
Логотип
Баннер в шапке 1
Баннер в шапке 2
2017/01/05 14:07:45

Carberp (trojan)

.

For November, 2011 Russia is the absolute leader in the number of incidents in the field of information security using a bank trojan of Carberp - 72% of total number in the different countries, reported the Russian Center of virus researches and analytics of ESET company in the report. According to outputs of experts, practically all largest Russian banks, business companies and government institutions suffered from this malware. At the same time the criminal income of the group developing Carberp is calculated by millions of dollars weekly.

Alexander Matrosov, the director of the Center of virus researches and analytics of ESET, commenting on the report, noted that Carberp is constantly improved, developers generously invest in development of this program. "Evolution of this malware in two years made it number one by the number of the incidents connected with RBS", - he emphasized.

In a research it is said, in particular, that the new version of a trojan of Carberp got butkit-functionality that allows it to bypass the protective systems integrated in IT infrastructures of the companies and to load harmful functions into a system. The cost of similar completion to the Trojan program in the "black" market is several tens of thousands of dollars that many times it is more, than the prices of other known Trojan developments - SpyEye and Zeus, cyberanalysts consider.

Carberp also uses four vulnerabilities in the Microsoft Windows operating systems for increase in level and the privileges of access for the user – it allows to carry out plunder of money using computers from where there is an access to RBS, but there are no administrator's rights. Moreover - Carberp has the functionality allowing to integrate the infected PCs in to botset (botnet). Today as a part of the existing network hundreds of thousands of infected machines.

ESET consider that despite orientation of Carberp on clients of the Russian banks, the situation can quickly change as this criminal cybergroup has no technology obstacles for carrying out the attacks to banks of other states. "And most likely malefactors will begin to look for partners in the attacks in other regions in the near future", - marked out Sailors.

According to Group IB company, growth of number of the incidents in information security field connected with fraud in the RBS systems only for the last year is more than 200%, and in the nearest future this indicator will grow. A main objective of malefactors – financial banking data of legal entities as embezzlement from accounts of the enterprises brings huge income to cybercriminals.

See Also