• Home
  • About Us
  • Authors
  • Submit News
  • Contact Us
  • Privacy Policy
  • Sitemap
The Hack Post
  • Hacking News
    • Cyber Crime
  • Cyber Security
  • Technology
    • Internet
  • Entertainment
    • Gaming
  • Business
  • Science / Health
No Result
View All Result
The Hack Post
No Result
View All Result

Terdot: Banking Malware-Espionage Tool Stealing Social Media and Email Accounts

Haider Ali Khan by Haider Ali Khan
November 20, 2017
Terdot Banking Malware
Share on FacebookShare on Twitter

Zeus malware is back with a vengeance. A spin-off of the banking trojan, now with revamped espionage capabilities, was recently discovered by security researchers.

It’s called Terdot, a trojan that’s been active since mid-2016 and highly customized to conduct (MitM) man-in-the-middle attacks to intercept any traffic on an infected computer. The malware was also designed to inject HTML code or spyware into visited pages, steal banking credentials and credit card information. Commonly targeted websites include the Bank of Montreal, Banque Nationale, Desjardins, PCFinancial, Royal Bank, Scotiabank, and many other Canadian institutions.

Terdot wants more. The Zeus-derived banking trojan is out to get social media and email accounts.

Targets include popular social networks Facebook, Google Plus, Twitter, and YouTube, whereas the banking trojan could even post on the infected user’s behalf. Google’s Gmail, Microsoft’s live.com, and Yahoo Mail are among the afflicted email service providers. This new focus has the potential to make Terdot an extremely powerful cyber espionage tool.

Terdot

Bitdefender researchers have observed Terdot in malicious emails bearing a fake PDF icon. When clicked, obfuscated JavaScript code is executed to download and run the malware. Terdot is also delivered mostly on websites compromised with the SunDown Exploit Kit. Utilizing a complex chain of droppers, injections, and downloaders, Terdot evades detection as downloads are done in installments.

Terdot can then successfully intercept and modify any data victims send to their bank or social media account in real-time. Not only that, the banking trojan can spread itself through posting fake links on other social media accounts. It’s interesting how the malware apparently skips on gathering data from VKontakte, Russia’s largest social media platform, which somehow hints the actors behind the new variant may be from Eastern Europe.

Tags: BankingMalwareTerdot
Haider Ali Khan

Haider Ali Khan

Founder, content creator and writer of The Hack Post. I am an independent cyber security researcher and ethical hacker. I am passionate and committed to educating the world to spread information and expose the threats that exist online. I have a vast span of knowledge and experience in the field of hacking and I’m here to share it all with everyone else.

Next Post
Facebook, Twitter and YouTube Gets Blocked in Pakistan

Facebook, Twitter, YouTube, Instagram and Dailymotion Goes Down: Blocked By ISP Providers in Pakistan

Latest Articles

10 Improvements Your Tech Business Should Make Next Year
Business

10 Improvements Your Tech Business Should Make Next Year

July 1, 2022
How To Create An Anonymous Account In Any Online App
Technology

How To Create An Anonymous Account In Any Online App

June 30, 2022
4 Tips for a Successful Digital Marketing Campaign
Technology

4 Tips for a Successful Digital Marketing Campaign

June 29, 2022
How to Recruit Top Software Developer Talent Online
Technology

How to Recruit Top Software Developer Talent Online

June 28, 2022
A Quick Introduction to Holographic Vinyl
Business

A Quick Introduction to Holographic Vinyl

June 27, 2022
7 Things To Know Before Moving To Seattle, WA
Business

7 Things To Know Before Moving To Seattle, WA

June 27, 2022
Why You Need a VPN on Your Smartphone
Technology

Why You Need a VPN on Your Smartphone

June 27, 2022
6 Useful Tips To Improve Your Copywriting
Technology

6 Useful Tips To Improve Your Copywriting

June 24, 2022
The Guide You Need To Lose Weight in 2022
Science / Health

The Guide You Need To Lose Weight in 2022

June 24, 2022
Top Natural Supplements for Weight Loss You Need to Try in 2022
Science / Health

Top Natural Supplements for Weight Loss You Need to Try in 2022

June 24, 2022
How To Manage Your Health And Wellness With A Hectic Work Life
Business

How To Manage Your Health And Wellness With A Hectic Work Life

June 24, 2022
Health and Safety Considerations When Designing A New Office
Business

Health and Safety Considerations When Designing A New Office

June 24, 2022
  • Home
  • About Us
  • Authors
  • Submit News
  • Contact Us
  • Privacy Policy
  • Sitemap

The Hack Post © 2019

No Result
View All Result
  • Hacking News
    • Cyber Crime
  • Cyber Security
  • Technology
    • Internet
  • Entertainment
    • Gaming
  • Business
  • Science / Health

The Hack Post © 2019