@CloudExpo Authors: Pat Romanski, Elizabeth White, Yeshim Deniz, Liz McMillan, Zakia Bouachraoui

News Feed Item

AhnLab Announces the Full Analysis of Citadel Malware

AhnLab, Inc. (KRX:053800)(http://global.ahnlab.com), a leading provider of integrated security solutions today announced the full analysis of Citadel malware, the latest generation of banking information-stealing malware.

The most famous banking-targeted malware before Citadel was Zeus and SpyEye Trojan. After the source code of Zeus went public in 2011, Citadel is emerged as the most dominating malware with enhanced malicious functions.

According to AhnLab, Citadel has many things in common with Zeus. It creates and manages the botnet, a collection of internet-connected computers those are infected with malware. It is designed to collect personal information from infected PCs including online banking information, web browser credential and SNS account data. The malware also delivers ransomeware and scareware from attacker in attempts to extort money directly from victims.

In terms of info-stealing, Citadel surpasses Zeus. Both malwares collect and leak basic information of infected PC, including OS information, data of web browser in use, system time, and user admin name before they steal banking credential. Citadel, in addition to the basic information, leaks more comprehensive information of infected PC including domain information of local network, the list of data base servers, network configuration information and homepage setting information. With these information gathered, the attacker can design more targeted threats.

Citadel is provided in a Software-as-a-Service (SaaS) model, as it has its own store, and customers can manage the malware from creation to maintenance. The store offers the Citadel builder, botnets paying in monthly basis, update service, a test to avoiding AV and many other features. It indicates a recent trend of the cybercrime ecosystem.

AhnLab’s AOS provides integrated and multi-layered transaction security against comprehensive security threats. With its four primary components including AOS Secure Browser, a dedicated security browser that creates a protected environment for online transactions, AOS Anti-keylogger, AOS Firewall and antivirus, prevent confidential data loss through this kind of advanced and targeted attack from sophisticated malware such as Zeus, SpyEye and Citadel. After the full analysis of Citadel malware, AhnLab keeps working on analysis of possible Citadel variants.

AhnLab’s AOS is selected by the several world’s most famous banks including Citibank Korea, Banamex, Banco Santander in Mexico and Cornerstone Community Bank in US.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

CloudEXPO Stories
Most modern computer languages embed a lot of metadata in their application. We show how this goldmine of data from a runtime environment like production or staging can be used to increase profits. Adi conceptualized the Crosscode platform after spending over 25 years working for large enterprise companies like HP, Cisco, IBM, UHG and personally experiencing the challenges that prevent companies from quickly making changes to their technology, due to the complexity of their enterprise. An accomplished expert in Enterprise Architecture, Adi has also served as CxO advisor to numerous Fortune executives.
Eric Taylor, a former hacker, reveals what he's learned about cybersecurity. Taylor's life as a hacker began when he was just 12 years old and playing video games at home. Russian hackers are notorious for their hacking skills, but one American says he hacked a Russian cyber gang at just 15 years old. The government eventually caught up with Taylor and he pleaded guilty to posting the personal information on the internet, among other charges. Eric Taylor, who went by the nickname Cosmo the God, also posted personal information of celebrities and government officials, including Michelle Obama, former CIA director John Brennan, Kim Kardashian and Tiger Woods. Taylor recently became an advisor to cybersecurity start-up Path which helps companies make sure their websites are properly loading around the globe.
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a member of the Society of Information Management (SIM) Atlanta Chapter. She received a Business and Economics degree with a minor in Computer Science from St. Andrews Presbyterian University (Laurinburg, North Carolina). She resides in metro-Atlanta (Georgia).
SUSE is a German-based, multinational, open-source software company that develops and sells Linux products to business customers. Founded in 1992, it was the first company to market Linux for the enterprise. Founded in 1992, SUSE is the world’s first provider of an Enterprise Linux distribution. Today, thousands of businesses worldwide rely on SUSE for their mission-critical computing and IT management needs.
Mid-sized companies will be pleased with StorageCraft's low cost for this solution compared to others in the market. There are no startup fees, our solution has a predictable monthly cost, highly competitive pricing and offers ongoing value for our partners month after month. By enabling pooling and StorageCraft's 30-days of free virtualization the company removes several concerns surrounding machine size management and disaster recovery testing costs that add to the complexity of implementing a disaster recovery solution. In addition, their One-Click orchestration makes it simple to recover when needed, as all the work to setup a network and different connections is already complete.