The Necurs botnet has recently undergone a resurgence, distributing millions of malicious emails – large swathes of which have most recently been spreading Locky ransomware. It’s also been known to deliver the Trickbot banking trojan, indicating the attackers behind it have their fingers in many pies. But not happy with just that, wow those behind Necurs – a zombie army of over five million hacked devices – are also attaching a downloader with the functionality to gather telemetery from infected victims.

Uncovered by researchers at Symantec, the Necurs downloader can take screengrabs of infected machines and send them back to a remote server. It also contains an error-reporting feature which sends information back to the attackers on any issues the downloader encounters when performing its activities.

You can read more in an article by Danny Palmer in the ZDNet web site at: http://zd.net/2zhHOrT.

While this new variant of the Necurs botnet is a serious problem, it is limited only to Windows computers. It does not seem to affect Macintosh, Linux, iPad, or Android devices.

• White House Chief of Staff John Kelly’s Personal Cell Phone was Compromised
• Mac OSX Trojan Malware Spread Via Compromised Software Downloads

Categories: Viruses & Malware

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out /  Change )

You are commenting using your Twitter account. ( Log Out /  Change )

You are commenting using your Facebook account. ( Log Out /  Change )

Cancel

Connecting to %s

Notify me of new comments via email.

Notify me of new posts via email.

Δ

This site uses Akismet to reduce spam. Learn how your comment data is processed.