Zeus Panda Banking Trojan: Black Hat SEO used for hackers


Zeus Panda Banking Trojan: Black Hat SEO used for hackers to steal your bank info

Zeus Panda Banking is showing that the cybercrime is not limited to repeating patterns of malicious behavior without more, but among them there are true experts who investigate new ways to perform their misdeeds. Did you think you had seen it all? A group of cybercriminals is trying to spread a new version of the Zeus Panda banking Trojan through black hat SEO.

Zeus Panda: What it is?

In this way, to carry out their attacks using black hat SEO, the group of cybercriminals uses websites where they insert keywords. Thus, they create new web pages or manipulate existing ones.

Also, hacked websites position pages in the first search results. This happens, when they perform specific queries related to online banking or personal finance.

Users who click on the links of websites are directed to web pages in which there is a malicious JavaScript code. Thus, it runs in the background and redirects the user to a series of sites. Here, it is invited to download a malicious document.

Also, the chain of redirects leads to advertising campaigns that invade the user. Thus, with the execution of web pages that contain malicious ads, exploit kits, the user is vulnerable.

Likewise, the group of cybercrime combines spam botnets driven by SEO with a classic chain of redirects. On the other hand, the document you downloaded is apparently of the same type as that received in standard spam campaigns. Only differing in the way of receiving it.

In this sense, the Word document has nothing new as a means of attack to install malware. This uses macros that execute a series of hidden scripts to install the most recent variant of Zeus Panda. Obviously, this requires that the user enable the execution of the macros to carry out the attack.

Who discovered Zeus Panda Trojan?

It was the Cisco Talos experts who discovered this complex campaign to distribute Zeus Panda. They also published in their official blog all the details they discovered.

On the other hand, we can highlight his surprise for “how the attackers refine and change their techniques regularly”.

They also show why the continued use of intelligence on threats is essential to ensure that organizations remain protected against new threats over time.

How to know if I have Zeus Panda Trojan?

To verify exactly if Zeus Panda affects your computer, you have the following options:

Perform a full scan of the computer with your Panda Antivirus (check the update). If it is not and you are a Panda Security client, update it by clicking here.

Check your computer with Panda ActiveScan, Panda Security’s free online analysis tool, which will quickly detect all possible viruses.

How to remove Zeus Panda Trojan?

Then, if during the analysis process, Panda Antivirus will automatically give you the option to eliminate it: do so, following the instructions of the program.

It is important to keep abreast of these new attacks. The new ways of attacking hackers lead to think that they will do in the future and it will be able to stop them. Until now, Zeus Panda is not a threat unless you’re an unwary navigator. So please, share this information so your friends are safe.


Please enter your comment!
Please enter your name here