CIO Home | White Papers | Bloggers | Webcasts | Newsletters | RSS

|

»

Security

News

Gozi Trojan Resurfaces Briefly, Security Researcher Finds

The malware worm behind an identity theft service returns to exploit vulnerability in Adobe Acrobat 8.x, then disappears.

Leave a comment

By Scott Berinato

Thu, October 25, 2007 — CSO — The Gozi Trojan, a bot that fronted a sophisticated hacking subscription service earlier last year, was found again in the wild today infecting PCs at a healthy clip through the use of PDF spam, according to SecureWorks security researcher Don Jackson.

MORE ON the Malware Threat

Who's Stealing Your Passwords? Global Hackers Create a New Online Crime Economy

Gozi and the Subscription Hacking Model

It appeared the servers that hosted the malware started to clog their own network and pull down performance, causing the service provider hosting the servers to shut them down voluntarily, Jackson said.

In January, Jackson accidentally discovered the Gozi Trojan and the service it connected to, called 76service. He said the latest distribution of the Gozi bot is the first in-the-wild exploit of a vulnerability in Adobe Acrobat version 8.x. The Acrobat vulnerability is based on the fact that in certain PDF pages will automatically execute a "mailto:" command when the file is opened. Hackers manipulate this such that the command gets passed off to the operating system instead of an e-mail client. The command tells the machine to download a small file called a downloader, which is simply another command that in turn tells the machine to download the Gozi bot.

You can read more about this development at CIO's sister publication, CSOonline.com.

Comments

Print

LinkedIn

Gozi

More from IT Drilldown « Back to Security

Articles

Gumblar Malware's Home Domain is Active Again

Developer Finds Major Coding Errors in Facebook, MySpace

Boston Celtics Clamp Down on Spam

Postini Technology to Spread Across Google Apps

Federal Data Protection Law Inches Forward

Microsoft Plans Six Patches Next Week, Ties November Record

Six Steps to Pull App Security Back to the Future

Blue Coat Slashes Staff, Buys S7 Services Company

More Articles »

Mobile Security ABCs

Get up to speed on mobile security.

Learn More »

Security Newsletter

Recent Articles

Who's Stealing Your Passwords? Global Hackers Create a New Online Crime Economy

Gozi and the Subscription Hacking Model

Hacker Economics 2: The Conspiracy of Apathy

Hacker Economics 3: MPACK and the Next Wave of Malware

A Layman's Glossary of Malware Terms

How Gozi's First Second Unfolds

Death by iFrame

Security MarketSpace

8 Tactics to Combat Vulnerabilities

This white paper reviews 8 key elements of vulnerability management and provides advice on combating known vs. unknown vulnerabilities. Learn more »

Email and Web Threats Require a Layered Defense

Learn how web threats are changing and how using a layered defense strategy can give you the security you need. Learn more »

The Case for Data Protection for SMBs

Take Fraudsters Out of the Game

Easily identify account-device relationships and get data for in-depth forensic analysis. Learn more »

Mobile Security Landscape

This paper examines the current mobile security landscape, including myths surrounding the risks and threats, and how organizations can establish a solid mobile security strategy. Learn more »

Reducing Energy Costs in Your Data Center

This white paper examines the most common roadblocks to improving data center efficiency. Learn more »

Security convergence equals network security cost savings

Security convergence equals network security cost savings Learn more »

IBM ISS X-Force Threat and Risk Report

Read this Trend and Risk report from IBM® ISS X-Force® to learn statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, web-based threats, and general cyber criminal activity. Learn more »

WHITE PAPERS

8 Elements of Vulnerability Management

Secure Email and Web-Based Communication from Evolving Attacks

WagerWorks Takes Fraudsters Out of the Game Using iovation

Mobile Security: The Essential Ingredient for Today's Enterprise

IBM ISS X-Force Threat and Risk Report

A Security Blueprint Delivered From within the Network

Protecting Your Intellectual Property White Paper

Seven Technologies for Advanced Mail Protection

Seven Design Requirements for Web 2.0 Threat Protection

The Total Economic Impact of Network Security Intrusion Prevention

Aberdeen Report: Five-Step Mobility Management Plan for Lowering TCO per Mobile Employee, Reducing Risk and Increasing User Productivity

The CIO's New Guide to Design of Global IT Infrastructure

How Riverbed Helps Organizations Cut Costs

Forrester on WAN Optimization for Mobile Users

Five Steps to Successful IT Consolidation

Beyond PCI Checklists: Securing Cardholder Data with Tripwire's Enhanced File Integrity Monitoring

IDC White Paper: CCM for IT Compliance and Risk Management

FISMA Prescriptive Guide

The Business Case for Server Refresh

Red Hat Open Source Security

More White Papers »

SPONSORED LINKS

Mobile Security: The Essential Ingredient for Today's Enterprise

IDC White Paper: CCM for IT Compliance and Risk Management

Keeping Your Members Safe from Online Scams and Predators

Learn about the growing threat of insider data theft.

Cut Costs & Green Your IT Operations with PC Power Management

White Paper: 4 Customer Service Myths

White Paper: Improve Agility with Operational Responsiveness

White Paper: Legacy Tools: Not Built for the Helpdesk

Taking a Seat at the Executive Table: The Reality of Virtualization

White Paper: Next Generation Remote Infrastructure Management

Seven Design Requirements for Web 2.0 Threat Protection

Generation Remote Infrastructure Management - Changing the Paradigm

Cloud-Based Email Management: Opinion Shifts In Favor

eBook: How Can You Make Your People Productive Anywhere?

Achieving Business Agility with Application Grid

Ready to virtualize tier one applications? Check your virtualization maturity.

Seven Ways ITIL Can Help You in an Economic Downturn

Tips for successful virtualization management.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion

Read the RSA report: Security for Business Innovation

Webcast: Looking to the Cloud for Email and Collaboration Services

64-page prescriptive guide to security, compliance, and IT operations.

Keep your IT expertise up to date. Join the Intel Premier IT Professionals.

A Clear View Toward Virtualization

Virtualization Technology as a Business Solution

White Paper: Managed Security for a Not-So-Secure World

Secure Email and Web-Based Communication from Evolving Attacks

WagerWorks Takes Fraudsters Out of the Game using iovation

White Paper: A Security Blueprint Delivered From within the Network

See how AT&T can help protect your network.

Webcast: Unleashing the Power of Customer Data

White Paper: 5 Best Practices for Smartphone Support

Global Research: CIOs Weigh In On Virtualization

5 Key Virtualization Management Challenges

The Total Economic Impact of Network Security Intrusion Prevention

Join us at the US-Brazil IT-BPO Summit, on November 10th in New York.

Increase UPS efficiency without sacrificing protection.

Learn how advanced forecasting tools can deliver significant business results for global corporations.

Lower IT Costs with Oracle Database 11g Release 2

White Paper: Visibility and the New Normal of Mobile Work

Taking the Service Desk to the Next Level

Learn about The Information Technology Infrastructure Library.

Top Five CIO Challenges

Streamline IT Costs. Boost Performance with WAN Optimization.

Want to know how you can maximize employee productivity?

Build your 1st app FREE with Force.com

TDWI checklist helps define data readiness for analytics. Download report.

A new fleet of PCs with a total ROI in 10 months. Find your ROI.

eZine: A Roadmap to Reducing IT Complexity

Reduce risk, gain agility. See how Progress can help your business.

RESOURCE CENTER

© 1994 - 2009 CXO Media Inc.