Like Tree1Likes
  • 1 Post By hackerman1

Thread: New "banktrojan" uses a valid digital certificate !

  1. #1
    hackerman1 is offline Senior Member
    Join Date
    Dec 2008
    Location
    Sweden
    Posts
    1,525

    Default New "banktrojan" uses a valid digital certificate !

    Hi !


    MalwareBytes AntiMalware (MBAM) has detected a new trojan !


    New "banktrojan" uses a valid digital certificate !

    "In the past few days we have heard several stories about major corporations getting hacked and their security systems completely bypassed.
    If anything, that should remind us of how vulnerable our data and privacy are.
    The fact of the matter is that there are so many angles one can get exploited that at the end of the day it can leave us wondering what or who to trust.
    Take, for example, digital certificates which have been in the spotlight after Stuxnet used some or after Adobe’s servers were breached to sign malware.
    The purpose of a digital signature is to guarantee the authenticity of a file from a particular vendor and is provided by one of a few certificate authorities.

    Well, we just spotted a new malware sample (Brazilian banking/password stealer) which happens to be signed with a real and valid digital certificate issued by DigiCert.

    This certificate is issued to a company called “Buster Paper Comercial Ltda”, a Brazilian company that actually does not exist and was registered with bogus data
    "

    full story: Digital certificates and malware: a dangerous mix | Malwarebytes Unpacked
    Last edited by hackerman1; 7th February 2013 at 12:58.
    Matrix likes this.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Log in

Log in

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22