SlideShare a Scribd company logo

Yummba Webinject Tools Crimeware Threat

Akamai
Akamai

http://www.stateoftheinternet.com/ | Attackers have created a new threat to financial data integrity and bank fraud. Bank and financial institution customers whose personal machines have been infected with the Zeus cybercrime malware provide an appealing platform for further exploitation by Yummba webinject tools. Yummba’s robust toolkit allows malicious actors to steal customer data as well as their bank account funds. Learn how you can protect your customers and your business from this high-risk cybersecurity attack toolkit in this summary presentation: http://bit.ly/1GBWuUg

Business
1 of 10
Download to read offline
Yummba Webinject Tools A Web Security Threat Advisory
©2014 AKAMAI | FASTER FORWARDTM Overview: Yummba Webinject Tools • New webinject tool by Russian individual or group using the name Yummba • A webinject is a framework that allows attackers to insert custom elements into web pages • Appears legitimate to end users • Incorporated into malware kits such as Zeus, SpyEye and KINS • Used to collect and exploit customer data • Stolen credentials allow attackers to bypass security measures • Webinjects crafted by Yummba are robust • Utilizes the Automatic Transfer System (ATSEngine) • More complete and dynamic attacks and a more advanced feature set
©2014 AKAMAI | FASTER FORWARDTM Sample Webinject • A webinject lays or embeds information in a legitimate webpage that misleads the customer into entering data • Data used for malicious purposes, such as identity theft and banking/credit card fraud. • Often customized to match a site’s look and feel
©2014 AKAMAI | FASTER FORWARDTM Webinject Targets • PLXsert identified more than 100 companies with active injects available • The most likely targeted companies are larger financial institutions in North America and Europe • Attacks-for-sale come with a wide range of features • Simple reporting of account information • Simple credential theft • Automated wire transfers to an attacker-controlled account • Attack targets include banking and financial services sites, multiple ecommerce sites and social media platforms
©2014 AKAMAI | FASTER FORWARDTM Code Analysis and the ATSEngine • Custom Yummba webinjects are intended to be used with the ATSEngine • Allows malicious actors to update their configurations easily • The code prepares the ATSEngine to scrape and gather user’s banking session information • Hidden iframes are used to exfiltrate the data • Data is sent directly to the malicious actor’s command and control (CC or C2) server without the user’s knowledge • Other functions attempt to gather additional user account information
©2014 AKAMAI | FASTER FORWARDTM How It Works with Zeus • The Zeus framework is a banking trojan crimeware kit that is often used to harvest banking credentials • Once a system is compromised by Zeus, malicious actors have access to a variety of remote commands, such as installing webinjects • Lab simulations used an infected Zeus bot configured with webinjects prior to browsing several websites During a test in the lab environment, a user submitted fake credentials that were collected by the Yummba webinject tool
©2014 AKAMAI | FASTER FORWARDTM Vulnerability Mitigation • In most cases, a client computer would have been previously compromised by a Trojan such as the Zeus crimeware kit • Mitigation efforts include • User awareness • Antivirus software • System hardening • Deep packet inspection • Community cleanup • Get more detail mitigation techniques in the full Yummba Webinjects Tool threat advisory
©2014 AKAMAI | FASTER FORWARDTM Conclusion • The underground crimeware ecosystem will continue to target financial institutions and streamline illegitimate operations • Malicious actors will continue to develop payloads like these, in addition to DDoS botnet building and monetization • Easy-to-use crimeware kits have simplified the setup of criminal shops that can generate profits very quickly • International cooperation, community cleanup and a preemptive security mindset are needed to prevent the further expansion of this profitable criminal market
©2014 AKAMAI | FASTER FORWARDTM Threat Advisory: Yummba Webinject Download the Yummba Webinject Tools threat advisory at www.stateoftheinternet.com/yummba • This high risk crimeware threat advisory includes: • How webinjects work • Co-resident malware, such as Zeus and ATSengine • Potential banking targets • Analysis of the code • Types of data stolen • Vulnerability mitigation
©2014 AKAMAI | FASTER FORWARDTM About stateoftheinternet.com • StateoftheInternet.com, brought to you by Akamai, serves as the home for content and information intended to provide an informed view into online connectivity and cybersecurity trends as well as related metrics, including Internet connection speeds, broadband adoption, mobile usage, outages, and cyber-attacks and threats. • Visitors to www.stateoftheinternet.com can find current and archived versions of Akamai’s State of the Internet (Connectivity and Security) reports, the company’s data visualizations, and other resources designed to put context around the ever-changing Internet landscape.

Recommended

8.2
8.28.2
8.2rakul-oi
 
5.1
5.15.1
5.1rakul-oi
 
Mesheuressup
MesheuressupMesheuressup
MesheuressupCatalyse IT
 
Customer Service-Sales Resume
Customer Service-Sales ResumeCustomer Service-Sales Resume
Customer Service-Sales ResumeLisa Bartolotta
 
2.1
2.12.1
2.1rakul-oi
 
CV m g Harinkhede
CV m g HarinkhedeCV m g Harinkhede
CV m g HarinkhedeManoj Harinkhede
 
Effective parenting
Effective parentingEffective parenting
Effective parentingDr. Mandar Y. Gadkari
 
Legal tools présentation
Legal tools présentationLegal tools présentation
Legal tools présentationCatalyse IT
 

Recommended

8.2
8.28.2
8.2rakul-oi
 
5.1
5.15.1
5.1rakul-oi
 
Mesheuressup
MesheuressupMesheuressup
MesheuressupCatalyse IT
 
Customer Service-Sales Resume
Customer Service-Sales ResumeCustomer Service-Sales Resume
Customer Service-Sales ResumeLisa Bartolotta
 
2.1
2.12.1
2.1rakul-oi
 
CV m g Harinkhede
CV m g HarinkhedeCV m g Harinkhede
CV m g HarinkhedeManoj Harinkhede
 
Effective parenting
Effective parentingEffective parenting
Effective parentingDr. Mandar Y. Gadkari
 
Legal tools présentation
Legal tools présentationLegal tools présentation
Legal tools présentationCatalyse IT
 
2.3
2.32.3
2.3rakul-oi
 
8.1
8.18.1
8.1rakul-oi
 
2.1
2.12.1
2.1rakul-oi
 
17.5
17.517.5
17.5rakul-oi
 
15.1
15.115.1
15.1rakul-oi
 
12.1
12.112.1
12.1rakul-oi
 
NOV CV template Technicians
NOV CV template TechniciansNOV CV template Technicians
NOV CV template TechniciansBro Obermeyer
 
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...Call girls in Goa, +91 9319373153 Escort Service in North Goa
 
Innovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfInnovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfrichard876048
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03DallasHaselhorst
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchirictsugar
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
Kenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith PereraKenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith Pereraictsugar
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607dollysharma2066
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfRbc Rbcua
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportMintel Group
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationAnamaria Contreras
 
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...ShrutiBose4
 

More Related Content

Viewers also liked

NOV CV template Technicians
NOV CV template TechniciansNOV CV template Technicians
NOV CV template TechniciansBro Obermeyer
 

Viewers also liked (7)

2.3
2.32.3
2.3
 
8.1
8.18.1
8.1
 
2.1
2.12.1
2.1
 
17.5
17.517.5
17.5
 
15.1
15.115.1
15.1
 
12.1
12.112.1
12.1
 
NOV CV template Technicians
NOV CV template TechniciansNOV CV template Technicians
NOV CV template Technicians
 

Recently uploaded

Innovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfInnovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfrichard876048
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03DallasHaselhorst
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607dollysharma2066
 
Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchirictsugar
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
Kenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith PereraKenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith Pereraictsugar
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCRashishs7044
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCRashishs7044
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607dollysharma2066
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfRbc Rbcua
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportMintel Group
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationAnamaria Contreras
 
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...ShrutiBose4
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...ictsugar
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Kirill Klimov
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy Verified Accounts
 
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxContemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxMarkAnthonyAurellano
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Seta Wicaksana
 

Recently uploaded (20)

No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
No-1 Call Girls In Goa 93193 VIP 73153 Escort service In North Goa Panaji, Ca...
 
Innovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdfInnovation Conference 5th March 2024.pdf
Innovation Conference 5th March 2024.pdf
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR
 
Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03Cybersecurity Awareness Training Presentation v2024.03
Cybersecurity Awareness Training Presentation v2024.03
 
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
(Best) ENJOY Call Girls in Faridabad Ex | 8377087607
 
Marketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent ChirchirMarketplace and Quality Assurance Presentation - Vincent Chirchir
Marketplace and Quality Assurance Presentation - Vincent Chirchir
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
 
Kenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith PereraKenya Coconut Production Presentation by Dr. Lalith Perera
Kenya Coconut Production Presentation by Dr. Lalith Perera
 
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
8447779800, Low rate Call girls in Uttam Nagar Delhi NCR
 
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
8447779800, Low rate Call girls in New Ashok Nagar Delhi NCR
 
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607FULL ENJOY Call girls in Paharganj Delhi | 8377087607
FULL ENJOY Call girls in Paharganj Delhi | 8377087607
 
APRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdfAPRIL2024_UKRAINE_xml_0000000000000 .pdf
APRIL2024_UKRAINE_xml_0000000000000 .pdf
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample Report
 
PSCC - Capability Statement Presentation
PSCC - Capability Statement PresentationPSCC - Capability Statement Presentation
PSCC - Capability Statement Presentation
 
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
Ms Motilal Padampat Sugar Mills vs. State of Uttar Pradesh & Ors. - A Milesto...
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024
 
Buy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail AccountsBuy gmail accounts.pdf Buy Old Gmail Accounts
Buy gmail accounts.pdf Buy Old Gmail Accounts
 
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptxContemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
Contemporary Economic Issues Facing the Filipino Entrepreneur (1).pptx
 
Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...Ten Organizational Design Models to align structure and operations to busines...
Ten Organizational Design Models to align structure and operations to busines...
 

Yummba Webinject Tools Crimeware Threat

  • 1. Yummba Webinject Tools A Web Security Threat Advisory
  • 2. ©2014 AKAMAI | FASTER FORWARDTM Overview: Yummba Webinject Tools • New webinject tool by Russian individual or group using the name Yummba • A webinject is a framework that allows attackers to insert custom elements into web pages • Appears legitimate to end users • Incorporated into malware kits such as Zeus, SpyEye and KINS • Used to collect and exploit customer data • Stolen credentials allow attackers to bypass security measures • Webinjects crafted by Yummba are robust • Utilizes the Automatic Transfer System (ATSEngine) • More complete and dynamic attacks and a more advanced feature set
  • 3. ©2014 AKAMAI | FASTER FORWARDTM Sample Webinject • A webinject lays or embeds information in a legitimate webpage that misleads the customer into entering data • Data used for malicious purposes, such as identity theft and banking/credit card fraud. • Often customized to match a site’s look and feel
  • 4. ©2014 AKAMAI | FASTER FORWARDTM Webinject Targets • PLXsert identified more than 100 companies with active injects available • The most likely targeted companies are larger financial institutions in North America and Europe • Attacks-for-sale come with a wide range of features • Simple reporting of account information • Simple credential theft • Automated wire transfers to an attacker-controlled account • Attack targets include banking and financial services sites, multiple ecommerce sites and social media platforms
  • 5. ©2014 AKAMAI | FASTER FORWARDTM Code Analysis and the ATSEngine • Custom Yummba webinjects are intended to be used with the ATSEngine • Allows malicious actors to update their configurations easily • The code prepares the ATSEngine to scrape and gather user’s banking session information • Hidden iframes are used to exfiltrate the data • Data is sent directly to the malicious actor’s command and control (CC or C2) server without the user’s knowledge • Other functions attempt to gather additional user account information
  • 6. ©2014 AKAMAI | FASTER FORWARDTM How It Works with Zeus • The Zeus framework is a banking trojan crimeware kit that is often used to harvest banking credentials • Once a system is compromised by Zeus, malicious actors have access to a variety of remote commands, such as installing webinjects • Lab simulations used an infected Zeus bot configured with webinjects prior to browsing several websites During a test in the lab environment, a user submitted fake credentials that were collected by the Yummba webinject tool
  • 7. ©2014 AKAMAI | FASTER FORWARDTM Vulnerability Mitigation • In most cases, a client computer would have been previously compromised by a Trojan such as the Zeus crimeware kit • Mitigation efforts include • User awareness • Antivirus software • System hardening • Deep packet inspection • Community cleanup • Get more detail mitigation techniques in the full Yummba Webinjects Tool threat advisory
  • 8. ©2014 AKAMAI | FASTER FORWARDTM Conclusion • The underground crimeware ecosystem will continue to target financial institutions and streamline illegitimate operations • Malicious actors will continue to develop payloads like these, in addition to DDoS botnet building and monetization • Easy-to-use crimeware kits have simplified the setup of criminal shops that can generate profits very quickly • International cooperation, community cleanup and a preemptive security mindset are needed to prevent the further expansion of this profitable criminal market
  • 9. ©2014 AKAMAI | FASTER FORWARDTM Threat Advisory: Yummba Webinject Download the Yummba Webinject Tools threat advisory at www.stateoftheinternet.com/yummba • This high risk crimeware threat advisory includes: • How webinjects work • Co-resident malware, such as Zeus and ATSengine • Potential banking targets • Analysis of the code • Types of data stolen • Vulnerability mitigation
  • 10. ©2014 AKAMAI | FASTER FORWARDTM About stateoftheinternet.com • StateoftheInternet.com, brought to you by Akamai, serves as the home for content and information intended to provide an informed view into online connectivity and cybersecurity trends as well as related metrics, including Internet connection speeds, broadband adoption, mobile usage, outages, and cyber-attacks and threats. • Visitors to www.stateoftheinternet.com can find current and archived versions of Akamai’s State of the Internet (Connectivity and Security) reports, the company’s data visualizations, and other resources designed to put context around the ever-changing Internet landscape.