Russian cybercrime group compromised half a million computers

A mistake by a suspected Russian-speaking cybercriminal group allowed a security vendor to peep on a campaign that stole login credentials for hundreds of thousands of online bank accounts.

In a new report, Proofpoint said it found a large number of WordPress websites that had been compromised to perform a drive-by download of Qbot, also known as Qakbot, a malicious software program.

Proofpoint analyzed the malware and found an unprotected control panel on a server used by the gang to control the computers, a dumb but not uncommon mistake.

To read this article in full or to leave a comment, please click here

Network World Security