Banking Trojan Gains Ability to Steal Facebook, Twitter and Gmail Accounts

Terdot, a revamped banking Trojan based on Zeus, can now spoof SSL certificates in order to gain access to social media and email accounts, in addition to its banking login and credit card information stealing features. These new capabilities allow Terdot to intercept and modify data sent to banks or social media in real-time. This banking Trojan is being distributed through malicious emails and websites compromised with the SunDown Exploit Kit. These threats can often be mitigated with employee awareness education, consistent social engineering testing, and adaptive email and web security filtering. 

Relevant URL(s):