Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Submission + - Source Code for Carberp Trojan Up for Sale (securityweek.com)

wiredmikey writes: Researchers have found the source code for the Carberp Trojan for sale in underground forums and allegedly includes the full source code of Carberp with comments, Web injects, all the modules used by Carberp, the source code of RDPxTerm and Gazavar (the worm module), the admin panel for the command-and-control server, the bootkit module, among others.

Interestingly, a seller going by the name of "madeinrm" had the price set at $5,000, while researchers from Trusteer came across what appears to be a different seller offering Carberp source code, but with a hefty $50,000 price tag, and said to be sold in coordination with the Carberp author.

Researchers from Trusteer suggest that a "breach of contract by a Carberp seller could have caused a buyer to take revenge and sell the source code.

Earlier this year, Russian authorities claimed to have captured the mastermind behind the Carberp banking Trojan and other members of the criminal gang. The cybercrime ring, led by a 28-year old Russian national, allegedly has been in operation since 2009 and has stolen approximately $250 million. In March 2012, authorities arrested and broke up a gang that used Carberp to steal $2 million from over 90 individual bank accounts.

It's very likely that once the code is sold, the new buyers would add on new features and distribute those variants to create newer versions of sophisticated malware.

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Source Code for Carberp Trojan Up for Sale

Comments Filter:

...there can be no public or private virtue unless the foundation of action is the practice of truth. - George Jacob Holyoake