Community
IBM Community Home
Automation
Business Analytics
Cloud Pak for Data
Data Science
DataOps
Hybrid Data Management
IBM Z & LinuxONE
Internet of Things
Middleware
Power Systems
Public Cloud
Security
Storage
Supply Chain
Watson Apps
Log in
Announcements
Blogs
Groups
Discussions
Events
Glossary
Site Content
Libraries
on this day
between these dates
Posted by
Announcements
Blogs
Groups
Discussions
Events
Glossary
Site Content
Libraries
on this day
between these dates
Posted by
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Security
Topic groups
Cloud Pak for Security
Global Security Forum
IBM Security Guardium
IBM Security i2
IBM Security MaaS360
IBM Security QRadar
IBM Security Resilient
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
User groups
Events
Upcoming Security Events
On Demand Webinars
IBM Tech TV
Virtual Community Events
All IBM Community Events
Participate
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Blogging on the Community
Connect with Security Users
All IBM Community Users
Resources
IBM Support
IBM Cloud Support
IBM Champions
Demos
Security Blogs
Security Learning Academy
Request for Enhancements
Marketplace
Marketplace
IBM Security Community
Learn, Network, Share.
In this user community of over 9000 members,
we work together to overcome the challenges of cybersecurity.
Join the Community
Skip main navigation (Press Enter).
Toggle navigation
Content types
Announcements
Blogs
Groups
Discussions
Events
Glossary
Site Content
Libraries
Date range
on this day
between these dates
Posted by
User Groups
User Group Tag Test
IBM Security Trusteer
View Only
Group Home
Discussion
62
Library
18
Blogs
11
Events
0
Members
248
Back to Blog List
IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites
By
Kelly Lappin
posted
Wed February 06, 2019 10:44 AM
Options Dropdown
Mark as Inappropriate
0
Recommend
By
Itzik Chimino
; Co-authored by
Limor Kessem
|
Ophir Harpaz
As part of the ongoing research into cybercrime tools targeting users of financial services and e-commerce, IBM X-Force analyzes the tactics, techniques and procedures (TTPs) of organized malware gangs, exposing their inner workings to help diffuse reliable threat intelligence to the security community.
In recent analysis of
IcedID Trojan
attacks, our team looked into how IcedID operators target e-commerce vendors in the U.S., the gang's typical attack turf. The threat tactic is a two-step injection attack designed to steal access credentials and payment card data from victims. Given that the attack is separately operated, it's plausible that those behind IcedID are either working on different monetization schemes or renting botnet sections to other criminals, turning it to a cybercrime-as-a-service operation, similar to the
Gozi Tojan's
business model.
To read the rest of the blog, please go to
https://securityintelligence.com/icedid-operators-using-atsengine-injection-panel-to-hit-e-commerce-sites/.
Share IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites on Facebook
Share IcedID Operators Using ATSEngine Injection Panel to Hit E-Commerce Sites on LinkedI
#Trusteer
0 comments
11 views
×
Reason for Moderation
Describe the reason this content should be moderated (required)
Permalink
Security
Topic groups
Cloud Pak for Security
Global Security Forum
IBM Security Guardium
IBM Security i2
IBM Security MaaS360
IBM Security QRadar
IBM Security Resilient
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
User groups
Events
Upcoming Security Events
On Demand Webinars
IBM Tech TV
Virtual Community Events
All IBM Community Events
Participate
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Blogging on the Community
Connect with Security Users
All IBM Community Users
Resources
IBM Support
IBM Cloud Support
IBM Champions
Demos
Security Blogs
Security Learning Academy
Request for Enhancements
Marketplace
Marketplace
Copyright © 2020 IBM Corporation. All rights reserved.
Powered by Higher Logic