Russian involvement
Proofpoint has traced the infrastructure of QBot all the way to Russia.
The report says that the cybercriminals obtained the authorised WordPress administrator logins through online legit purchases.
Windows XP clients comprised 52 per cent of the infected systems in the cybercrime groups botnet.
The cybercrime group also made money by selling access to compromised systems on underground forums.
The effects of the QBot banking trojan are not known as of now.
source: www.techworm.net
