RSA Warns of New Beta Bot Trojan

RSA researchers recently came across a new commercially-available Trojan called Beta Bot.

The malware appears to have evolved over time, and has been repurposed for financial fraud targeting banks, e-commerce sites and Bitcoin wallets.

“Beta Bot sports a data grabbing feature (by capturing HTTP POST requests), as well as a rather uncommon social engineering component that takes over the Windows user interface prompts, allowing it to interact with the end-user, escalate its own processes’ privileges, and make the infected PC its new home for the long run,” writes RSA cybercrime and online fraud communications specialist Limor S. Kessem.

The malware includes anti-virus disabling features, the ability to download files from the Internet as needed, and worm-like spreading capabilities via Skype or via USB devices. It’s also capable of killing competing malware communications, and possesses DDoS capabilities, according to RSA.

Kessem reports that the malware is being sold online by developer “betamonkey” for between $320 and $500 per build.

Jeff Goldman
Jeff Goldman
Jeff Goldman is an eSecurity Planet contributor.

Top Products

Top Cybersecurity Companies

Cybersecurity is the hottest area of IT spending. That's why so many vendors have entered this lucrative $100 billion+ market. But who are the...

Top Endpoint Detection and Response (EDR) Solutions

Endpoint security is a cornerstone of IT security, so our team put considerable research and analysis into this list of top endpoint detection and...

Top CASB Security Vendors for 2021

Any cloud-based infrastructure needs a robust cloud access security broker (CASB) solution to ensure data and application security and integrity. After carefully surveying the...

Best SIEM Tools & Software for 2021

Security Information and Event Management (SIEM, pronounced "sim") is a key enterprise security technology, with the ability...

Related articles