Latest Banking Malware IcedID Already at Par with Contemporaries

IcedID is the latest banking Trojan detected on the Web. Even though quite recent on the cyber-crime landscape, IcedID's abilities are easily comparable with Gozi, Zeus and Dridex the already widespread bank info-stealing malware programs, which earlier gave in to immense damage and turmoil across cyber-space.

By employing IcedID, hackers have been attacking payment card issuers, banking institutions, mobile service suppliers, among others across United States. The Trojan targeted 2 banks in United Kingdom also. Aside having the ability to steal data, IcedID also keeps watch on victims' Internet operations.

Security investigators from IBM X-Force after revealing IcedID and examining it said that its operator was either a skilled hacker else some small-sized cyber-crime syndicate. The modular bank info-stealing Trojan has the ability to embezzle browsers through redirection alternatively web injection assaults so as for deceiving victims in a way that they would divulge their banking information by following the instructions of a malevolent website. The Trojan also establishes one local proxy to channel web-traffic so that it can tap into a contaminated computer's online activity and at the same time monitor it while also exfiltrate any useful messages onto its C&C system.

IcedID has the ability to also propagate itself on a network, while seems as purposefully designed for attacking enterprises' endpoints along with terminal servers, which establish linkages between these end-points as well as the overall network. Besides, the Trojan places request with LDAP (lightweight directory access protocol) for determining increased number of end-users over the PC-network who can be infected. Scmagazine.com posted this on the Web dated November 14, 2017.

The security researchers at IBM X-Force state that the crime gang operating IcedID utilizes Emotet Trojan's network of bots for serving the malware onto the computers it already infected.

And considering that IcedID has not yet grown in full capacity on the vast sphere of cyber-crime, nothing can yet be said for certain regarding the extent of success the malware might have during the forthcoming period. In any case, the security researchers rest on the belief that hackers will likely update it soon and increase its ferocity even more.

» SPAMfighter News - 11/20/2017