Qadars – a banking Trojan with the Netherlands in its sights

Dermot7 · Dec 18, 2013

A new banking Trojan has been making its round in the past few months. First publicly discussed by LEXSI, this banking Trojan has been very active, infecting users throughout the world. Its modus operandi is banking fraud through web injection. While this approach has been present for a long time in various banking Trojan families, it is still effective. Win32/Qadars uses a wide variety of webinjects, some with Android mobile components, used to bypass online banking security and to gain access to user’s bank account.
Click to expand...

http://www.welivesecurity.com/2013/12/18/qadars-a-banking-trojan-with-the-netherlands-in-its-sights/

Baserk · Dec 18, 2013

It uses Android/Perkele to bypass mobile based two-factor authentication systems
Click to expand...

Mobile two-factor authentication through codes by SMS, like used in NL only by biggest bank ING, is inferior to a card reader which will issue a single-session code/password imo.
A reader can still be insufficient against certain Mitb malware but not removing the weak aspect of socially engineered dumb smartphone users, is a bit stupid.
Gsm phones were fine, call and sms only, virtually no risk. Current smartphones are way too smart for a certain user base.

Log in or Sign up

Qadars – a banking Trojan with the Netherlands in its sights

Dermot7 Registered Member

Baserk Registered Member

Log in or Sign up

Qadars – a banking Trojan with the Netherlands in its sights

Dermot7 Registered Member

Baserk Registered Member

Useful Searches