[infosecurity-magazine] Gameover Trojan Morphs to Target Monster and Careerbuilder Websites

A new variant of the Gameover banking Trojan is expanding beyond the financial sector to target vulnerable job seekers and recruiters by stealing log-in credentials for the two largest employment sites on the web.

[emsisoft] Caphaw Trojan Found in Youtube Ads

Last Friday – under the shadow of two critical zero day exploits on Internet Explorer and Adobe Flash – researchers at Bromium Labs discovered malware in an advertising network connected to Youtube.  Specific details are yet unknown and the threat has yet to be completely mitigated.  As of Friday, Google Security was made aware of the issue and is currently investigating the matter with Bromium.

[scmagazine] Poisoned YouTube ads serve Caphaw banking trojan

Recent YouTube visitors should be extra vigilant after ads on the website were found to be poisoned.

According to researchers at Bromium Labs, who blogged about the threat on Friday, YouTube's ad network was compromised to host the Styx exploit kit.

The kit, which in recent news was pegged as compromising online retailer Hasbro.com, was leveraged to spread a nasty banking trojan, called Caphaw, to users.