Wednesday, 01 April 2026

This latest development in webinject marketing illustrates how the underground marketplace is following traditional software industry pricing schemes by offering a la carte and complete “suite” pricing options. Unfortunately, buying high quality webinjects is getting easier and more affordable, which opens the door for more criminals to get into the business of online banking fraud. Criminals are no longer bound by rigid malware configurations designed to conduct specific exploits at specific institutions. Criminals can now specify the precise exploit and target institution that they believe will maximize their ability to successfully commit fraud. And according to basic statistics, the more combinations of exploit types and targets attempted, the more likely it is for fraudsters find those that succeed.

Over the past several months, Trusteer has written about the evolving underground market for webinjects. Our researchers recently discovered a new development -- criminals are now selling customized webinjects that are priced per feature. For example, one seller offers a webinject for Zeus/SpyEye that contains the automatic transfer system (ATS) that was reported by Trend Micro researchers last week.

InfoSecurity
Posted On

Survey: Data leaks, employee error, BYOD top list of security threats

London, UK: Yesterday at the INSIGHTS 2012 conference, ISACA released COBIT 5 for Information Security, which builds on the recently released COBIT 5 framework to provide practical guidance for those interested in security at all levels of an enterprise. ISACA’s COBIT 5 framework is the only business framework for the governance and management of enterprise IT.

InfoSecurity
Posted On

  1. Korean DDoS attack investigation results highlights complexities of latest DDoS attack methodologies
  2. Two Thirds of Senior Management Don’t Know Where Their Company Data Is
  3. Kingston University’s surveillance software outshines Samsung, Panasonic...named CCTV System of the Year
  4. Blind Belief or Ignorance?
  5. Unveiling a spearphishing campaign and possible ramifications
  6. The EU Data Breach Directive reminds us that it’s about respecting customers not just ticking boxes
  7. Cloud Choices
  8. MITIE acquires Norwegian facilities management business...an update
  9. US blasts Syria over shoot-down of Turkish Aircraft
  10. Malware-as-a-service that allows you to manage your victims
  11. Mets make harvest of arrests in the tenth major day of action to deny criminals use of London's roads
  12. Army display new Foxhound at Defence Vehicle Demonstration in Millbrook
  13. IT security expert offers advice on analysing Windows malware using free Linux tools
  14. Cryptzone says user education now central to defeating the menace of social engineering attacks
  15. The most dramatic change to the Internet in four decades



Be a Beacon of Hope in the World

 



Scorpion News Corp

Nigeria Watch International

To expose official corruption in Nigeria, re-orientate the psyche of Nigerians and usher in the Nigerian renaissance

SIA Logo

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

 

About Vigilance

Vigilance is the brain child of a group of veteran journalists and international scholars who have worked in the mainstream media and distinguished themselves nationally and internationally before veering into security practice.

Who's Online

We have 327 guests and no members online

Search