IcedID trojan

What is IcedID and How it spread?

IcedID is a new trojan that been found in the banking scene where it still in the first development. Similiar to Trickbox and Dridex, trojan called IcedID can also carry out an attack that will steal all financial data by using web injection and redirection attack.

The countries that might be effected is  such as following:

  • US
  • Canada
  • UK

X-force have been reported that

IcedID possesses the ability to move to other endpoints, and X-Force researchers also observed it infecting terminal servers,terminal servers typically provide terminals, such as endpoints, printers and shared network devices, with a common connection point to a local area network or a wide area network, which suggests that IcedID has already been targeting employee email to land on organizational endpoints

The IcedID have been distributed by using Emotet Trojan where it can be a medium to put IcedID on the targeted victims. For those who doesn’t know what is Emotet Trojan, can read a technical report at here (source by Symantec)

source: BleepingComputer: New IcedID Banking Trojan Discovered and Symantec : Trojan.Emotet Technical Report

Author: Wan Ariff

He brings with him working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

Leave a Reply

Your email address will not be published. Required fields are marked *