Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Fresh Feature of Citadel Trojan Helps Compromise Password Managers

According to researchers from IBM-Trusteer a security company, the notorious Trojan Citadel's creators who, in the past built an enormous botnet with the malware-contaminated computers to wage several attack campaigns, recently included another feature to the Trojan that would seize keystrokes and acquire admission into password management programs.

The security firm recognized the computer processes that pertained to validation as well as password management programs which activated Citadel so it could seize keystrokes from PCs it infected.

IBM-Trusteer explains that the malware compromises a Personal Security protocol named neXus that's utilized for carrying out safe financial transactions as well as weakens twin freely-available password managers of the open-source kind such as KeePass and Password Safe so it can seize the much valuable main password with which to unlock as also enter the database of passwords on a victim's machine.

Interestingly, although Citadel earlier compromised sensitive information stacked inside password managers within widely-used browsers, it typically never compromised intermediate password managers.

According to Director of Enterprise Security Dana Tamir at IBM-Trusteer, Citadel attack presently has low impact; however, it appears that its perpetrators will soon focus on waging more widespread attacks against password managers. Ars Technica published this, November 20, 2014.

Notably, in their typical way, password managers enhance safety of Internet A/Cs via the creation of complex passwords that are also unusual for end-users' accounts, while the credentials are also encrypted for preventing access. However, as researchers recently discovered various vulnerabilities within 5 separate software where passwords are stored, the password manager technology remains shirt of foolproof.

Despite so, if implemented properly, password managers can let users save any new credential safely without having to even re-use keys.

Naturally therefore, attackers have begun trying to seize that so valuable main key.

Meanwhile, IBM-Trusteer has informed each-and-every associated vendor about the threat so they can in turn inform users, the company says.

It further notes that Citadel is progressively moving from committing cyber-crime to waging APT-form of personalized assaults. The malware's new functionalities along with desire for more and more genuine credentials are especially risky for critical infrastructure as well as financial services, the company adds.

» SPAMfighter News - 11/28/2014

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page