Wednesday, June 3, 06:35
Home security A brief look at the Citadel Banking Trojan

A brief look at the Citadel Banking Trojan

  • Citadel is a banking trojan that was originally discovered by 2012. It is based on the Zeus trojan source code.
  • This trojan is designed to steal sensitive information including financial information and passwords.

Citadel is known for targeted attacks on public and private organizations and steals credentials various information management systems, money and also infect systems with a range of malware. In fact, this is one of the first trojans to offer malware on Dark web.


The capabilities of Citadel

Using the man-in-the-browser (MiTB) technique, which involves HTML injection or JavaScript in one website, this trojan collects sensitive information.

  • MiTB allows hackers to add additional fields to the site, such as PINs or other sensitive fields.
  • Users assume they enter details on a legitimate site but fall victim to credential theft from this trojan.
  • Malware also has keylogging capabilities that can compromise passwords and authentication systems.
  • In some attacks, infected systems have been observed to turn bots into a botnet.
  • A ransomware called Reveton was also used in some attacks, suggesting that FBI it imposed exclusion and demanded an amount of ransom.

Attacks in the foreground

Citadel and its variants are said to have infected millions of computers and caused huge financial losses.

January 2014: 2013's malicious Target infringement was reported to be related to the Trojan Citadel.

February 2013: The NBC website was hacked and redirected to visitors to the Citadel banking Trojan. The site is said to be hosting an iframe that led visitors to sites hosted by the malware-serving RedKit kit.

September 2014: Researchers find a variant of Trojan used in attacks against many petrochemical companies in Μέση Ανατολή. This was probably the first time Citabel was used in attacks against non-financial entities in targeted attacks.

April 2016: A new malware executive named Atmos, a variant of Citadel, was discovered. Researchers noted that he had the same motivation as the Trojan Citadel.

Citadel developers went to jail

Dimitry Belorossov was sentenced to four years and six months in prison for distributing and installing the Citadel trojan. Mark Vartanyan, who is accused of developing the Citadel trojan, received a five-year prison sentence.


Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehc
Be the limited edition.


Samsung Access: Samsung's new service for new Galaxy devices!

Samsung has launched a new subscription service for upgrades, starting with the Galaxy S20 series. The new service, named Samsung ...

Microsoft: The tools that will now be available to everyone!

Microsoft now has the "Virtual Assistant Accelerator" and "Bot Framework Composer" tools for its entire user base. Developers can ...

Sony: Cancel PS5 event due to Floyd case!

The event that Sony had planned for the PS5 on June 4 was postponed indefinitely, due to the deplorable situation that prevails ...

Cisco warns: These Nexus switches have been hit by a serious security flaw

Cisco has warned customers with Nexus switches running NX-OS software to install updates to address a serious flaw ...

Windows 10 May 2020 Update: Get Windows 10 for € 9.09

As we all know, Windows 10 May 2020 Update has been released. It is safer, more reliable and more efficient than ever. It is certain that with ...

Anonymous's hack includes data from previous leaks!

As protests over the death of George Floyd in Minneapolis have spread across the United States, cyberattacks have targeted police ...

Critical Exim errors have been fixed, but many servers are still at risk

The update of Exim mail servers is not fast enough and the members of the Russian hacker Sandworm team are actively exploiting three critical ...

New Cisco vulnerability that concerns you!

A new critical Cisco vulnerability has been identified that concerns you: For those who don't know, Cisco recently announced that some of the servers ...

Antifa tweets from extreme rightists call for violence!

The "Antifa tweets" that flooded Twitter and promoted violence, actually came from a well-known far-right group! The information came in ...

Apple introduces the new USB-C Diagnostic Tool

Apple introduces the new USB-C Diagnostic Tool. See the new features: Apple finally brings the new internal USB-C Diagnostic Tool, ...