View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
November 28, 2013

Kaspersky Lab detects new bank account Trojan

Neverquest Trojan banker helps in bypassing online banking security systems.

By CBR Staff Writer

Kaspersky Lab has identified a new malicious programme capable of attacking any bank in any country, the Neverquest Trojan banker, which is targeted towards user of online banking.

The Neverquest Trojan banker is claimed to bypass online banking security systems like the web injection, remote system access as well as social engineering.

According to the company, the period before Christmas and New Year holidays experiences high malicious user activity and posts regarding buying and selling databases to access bank accounts and other documents have been made since early November.

Neverquest is capable of stealing usernames and passwords to bank accounts along with the data entered by the user into the modified pages of a banking website, while the special scripts for Internet Explorer and Firefox are said to offer the malware with control of the browser connection with the cybercriminal’s command server.

The Trojan’s also has a function that helps users to recover the list of targeted banks and develop code, which can be used on new websites that were not targeted earlier

Kaspersky Lab principal security researcher Sergey Golovanov said after wrapping up several criminal cases associated with the creation and proliferation of malware used to steal bank website data, a few holes appeared on the black market.

"New malicious users are trying to fill these with new technologies and ideas," Golovanov added.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

"Neverquest is just one of the threats aiming to take over the leading positions previously held by programs like ZeuS and Carberp."

The Trojan mostly targeted investment fund sites and offers clients ways to manage finances online so that the attackers could get access their accounts and use it transfer cash funds as well as play the stock market.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.