• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Andromeda

New GamaPoS Malware Piggybacks on Andromeda Botnet; Spreads in 13 US States

  • Posted on:July 16, 2015 at 7:04 am
  • Posted in:Botnets, Malware
  • Author:
    Jay Yaneza (Threats Analyst)
1

We discovered GamaPoS, a new breed of point-of-sale (PoS) threat currently spreading across the United States and Canada through the Andromeda botnet. GamaPoS is the latest in a long list of threats that scrape off credit card data from PoS systems. Compared to its predecessors, GamaPoS uses malware coded using the .NET framework—a first in PoS…

Read More
Tags: AndromedabotnetGamaPoSPOS malware

Andromeda Botnet Gets an Update

  • Posted on:July 31, 2013 at 6:37 am
  • Posted in:Botnets
  • Author:
    Trend Micro Forward-Looking Threat Research Team
0

The Andromeda botnet is still active in the wild and not yet dead. In fact, it’s about to undergo a major update real soon. This botnet was first reported back in 2011 but has recently risen to prominence due to the latest modifications in the threat. Initially, this project to update Andromeda was about to…

Read More
Tags: AndromedabotnetMalwareunderground

GAMARUE Uses SourceForge to Host Files

  • Posted on:June 11, 2013 at 8:58 am
  • Posted in:Botnets, Malware
  • Author:
    Dexter To (Network Threat Researcher)
1

In our monitoring of the GAMARUE malware family, we found a variant that used the online code repository SourceForge to host malicious files. This finding is the latest development we’ve seen since the increase in infection counts observed last month. SourceForge is a leading code repository for many open-source projects, which gives developers a free…

Read More
Tags: AndromedabotnetgamarueSourceforge

Keeping Up With the Andromeda Botnet

  • Posted on:May 22, 2013 at 8:09 am
  • Posted in:Botnets, Malware
  • Author:
    Romeo Dela Cruz (Threat Response Engineer)
0

Last March, I blogged about the Andromeda, a well-known botnet that surfaced in 2011 and is making a comeback this year. Just months after my report, we are still seeing notable activities from the said botnet, in particular a sudden boost of GAMARUE variants last week. The Andromeda botnet is a spam botnet that delivers…

Read More
Tags: AndromedaBotnetsgamarue

Andromeda Botnet Resurfaces

  • Posted on:March 11, 2013 at 7:01 pm
  • Posted in:Botnets, Malware
  • Author:
    Romeo Dela Cruz (Threat Response Engineer)
0

The Andromeda botnet – first spotted in late 2011 – has recently resurfaced. This threat arrives via a familiar means: spammed messages with malicious attachments or links to compromised websites hosting Blackhole Exploit Kit (BHEK) code. Here is one spam message we saw recently: Figure 1. Sample spammed message Andromeda itself is highly modular, and…

Read More
Tags: AndromedabotnetMalware

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

Sorry. No data so far.

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.