You can bid for Cerberus banking Trojan on dark web Russian hacker forum


Cerberus banking Trojan source code put up for auction after the hacking group splits; malware creators hope to make $100,000 from the sale

Massive infighting amongst the hacking team behind Cerberus banking Trojan has led to it being auctioned off on a Dark Web Russian hacker forum. Cerberus banking Trojan specifically designed for Android operating system and works by hiding behind legitimate Android Apps.

Once the App manages to bypass Google’s security barriers and gets listed on Google Play, it is downloaded by the victim and actually acts as a legitimate and useful utility App. However, Avast security researchers noticed that it lies dormant until it is activated by its command and control servers. Once it is executed, the malware creates an overlay across existing banking and financial apps. Cerberus will lurk in the background, waiting for a user to input their account credentials, of which this information is then stolen and sent to the hacking group’s command and control server.

Avast has noted that the malware is sophisticated enough to read your text messages — often used to deliver one-time passcodes (OTP) — as well as grab two-factor authentication (2FA) details. These security measures are intended to further protect our online banking sessions, but Cerberus can circumvent these controls.

Cerberus Android banking Trojan up for sale for $100,000

Bleeping Computer has reported that the creator of Cerberus has put it up for sale. Hudson Rock noticed an ad on a Russian speaking underground hacker forum. According to the ad, the malware is available on a bidding basis with a starting price of $50,000.

The ad states that the malware creator is selling Cerberus lock stock and barrel including the Trojan’s APK source code, module code, the code for administrator panels, and servers. The hacking group is also looking to sell the Cerberus customer base on the hacker’s forum.

The seller says Cerberus is put up for sale because the creator and his team broke up. The ad also claims that Cerberus Trojan is generating $10,000 in profit per month.


About Author

"The Internet is the first thing that humanity has built that humanity doesn't understand, the largest experiment in anarchy that we have ever had." Eric Schmidt

Notify of
Inline Feedbacks
View all comments