FYI: The Astaroth Trojan Part II

by

March 11, 2019

Cybereason has released an update regarding the recent re-emergence of the Astaroth Trojan. You can read it here

I wrote briefly about the subject on February 22nd. You can read that blog article here: fyi-the-astaroth-trojan.

Attack highlights include:

1. The Astaroth Trojan spam campaign is a Trojan most recently used to steal passwords 
    and personal information from individuals in Brazil.

2. Brazil is a major contributor to global cybercrime that continues to have a plethora of
    new, nefarious activities targeting individuals.

3. The Astaroth Trojan disguises its payload as JPEG, GIF, and extension-less files to avoid
    detection.

4. The campaign exploits legitimate operating system processes as well as security vendor
    products from companies like Avast and GAS Tecnologia to gain information about the
    target machine and steal password information, as well as keystate information and
    clipboard usage.

5. Full research on the latest Astaroth Trojan variant can be found here.

If you’ve got any questions please feel free to contact us. If you’ve got any thoughts or comments please feel free to leave them in the comment section below.

If you haven’t subscribed to our weekly newsletter please use the CTA in top right hand corner of the page.

Carl Keyser is a Digital Marketing Specialist at Integris.

Keep reading

Managed IT Services St. Paul: 5 Powerful Advantages for Businesses

Managed IT Services St. Paul: 5 Powerful Advantages for Businesses

As a business owner, it's important to make the most of your resources. This includes finding cost-effective solutions for managing and maintaining your company's technology. Keeping a competitive edge in your industry requires secure, modern tech that allows your...

IT Support Minneapolis: Where to Find Top IT Services in Minneapolis

IT Support Minneapolis: Where to Find Top IT Services in Minneapolis

If you’re wondering where to find top IT services in Minneapolis, it’s important to identify providers that offer a wide range of support, have great service and provide solid tech expertise. Comprehensive technology insight is especially important when it comes to IT...

Webinar: Email Security that Doesn’t Suck…

Webinar: Email Security that Doesn’t Suck…

Trustifi and Security 7 present Email Security That Doesn’t Suck.  In today’s age of over-complicated security tools, it is extremely difficult to manage the fine balance between security and productivity.   {% video_player "embed_player" overrideable=False,...