Data-stealing Qadars Trojan malware takes aim at 18 UK banks

Data-stealing Qadars Trojan malware takes aim at 18 UK banks

A three-year-old banking Trojan, believed to be the work of experienced and organised Russian cybercriminals, has now turned its attention to UK banks.

The Qadars Trojan has been active since 2013. Using several different versions, the malware has targeted banks in different regions, beginning with France and the Netherlands during 2013 and 2014, then australia, canada, the United States, and the Netherlands during 2015 and 2016.

Now, cybersecurity researchers at IBM X-Force Research -- who last month spotted malware attacking Brazilian banks ahead of the Olympics -- have observed the launch of a fresh version of Qadars and a new infection campaign.

This time, the malware campaign is targeting 18 banks in the UK -- which haven't been named for security reasons -- as well as financial institutions in Germany, Poland, and once again, the Netherlands. UK banks have recently also been targeted by a separate data-stealing Dridex malware campaign.

Qadars historically infects end-points using exploit kits found on compromised hosts, or on domains purchased for the purpose of serving malware. It has also been known to employ botnets, using downloader-type malware to infect victims.

Qadars uses social engineering to help take control of systems and undertake full-scale theft of data, including information from the two-factor authentication systems used by many online banking services. The Trojan is also capable of monitoring all user activity on a device and hijacking text messaging on the victim's mobile phone.

While Qadars predominantly focuses on stealing bank data, it also targets Facebook users, online sports betting users, e-commerce, and others.

 

Share it:
Share it:

[Social9_Share class=”s9-widget-wrapper”]

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You Might Be Interested In

Data Governance: Just Because You Can, Doesn’t Mean You Should

25 Sep, 2017

Businesses of all sizes across all industries are rapidly adopting digital transformation models that put data at the center of …

Read more

The Pros and Cons of a Serverless DevOps Solution

27 Apr, 2019

The dream of any Product Owner is fully customizable production software without the expense of paying for the hardware it …

Read more

Beyond Serverless: Why We Need A Stateful Data Fabric

20 Jun, 2019

The first iPhone was released on June 29, 2007. And while the advent of the iPhone was hardly the only …

Read more

Do You Want to Share Your Story?

Bring your insights on Data, Visualization, Innovation or Business Agility to our community. Let them learn from your experience.

Get the 3 STEPS

To Drive Analytics Adoption
And manage change

3-steps-to-drive-analytics-adoption

Get Access to Event Discounts

Switch your 7wData account from Subscriber to Event Discount Member by clicking the button below and get access to event discounts. Learn & Grow together with us in a more profitable way!

Get Access to Event Discounts

Create a 7wData account and get access to event discounts. Learn & Grow together with us in a more profitable way!

Don't miss Out!

Stay in touch and receive in depth articles, guides, news & commentary of all things data.