Dynamic Config mechanism

Citadel Trojan Updates with Dynamic Config Mechanism that Streamlines Fraud Activity

The elusive authors of the Citadel Trojan have released a new version of their banking botnet malware and service. The latest version, the sixth since it debuted in January and dubbed Rain, includes a dynamic configuration mechanism that allows botmasters to inject malicious content to compromised browsers on the fly. This real-time interaction with bots avoids the need to send an updated configuration file to the entire botnet and lessens the risk of detection by security operations.

Dynamic Config mechanism

Citadel Trojan Updates with Dynamic Config Mechanism that Streamlines Fraud Activity

Editor's Picks

Threatpost Poll: Is It Impossible to Secure Mobile Devices?

Google Boosts Encryption For Low-End Android Devices

Flaw in Multiple Airline Systems Exposes Passenger Data

MacOS Zero-Day Exposes Apple Keychain Passwords

The APT Name Game: How Grim Threat Actors Get Goofy Monikers

Topics

Authors

Threatpost

Subscribe to our Threatpost Today newsletter

Dynamic Config mechanism

Citadel Trojan Updates with Dynamic Config Mechanism that Streamlines Fraud Activity

Editor's Picks

Threatpost Poll: Is It Impossible to Secure Mobile Devices?

Google Boosts Encryption For Low-End Android Devices

Flaw in Multiple Airline Systems Exposes Passenger Data

MacOS Zero-Day Exposes Apple Keychain Passwords

The APT Name Game: How Grim Threat Actors Get Goofy Monikers

Subscribe to Threatpost Today

Subscribe to our newsletter, Threatpost Today!

Topics

Authors

Threatpost

InfoSec Insider Post

Sponsored Post

**Subscribe to our Threatpost Today newsletter**