The masterkey of the Password Management System.
A Password Management System is a software software that helps a user store and organize passwords.
The authors/handlers of the Citadel Trojan are after this master password.
How does Citadel Trojan work
The Citadel Trojan is not new.
It is a massively distributed malware that has already compromised millions of computers worldwide.
Password Safe, meanwhile, is an open source tool built by Bruce Schneier.
The Trojan, however, sidesteps that protection by stealing the master password.
As per Security Intelligence.
APT are now the most sought after pieces of malware.
The new and changed configuration of Citadel that is being used to compromise password management and authentication solutions.
It instructs the malware to start keylogging (capturing user keystrokes) when some processes are running.
It is used by enterprises as well as online service providers.
KeePass.exe: A process that belongs to KeePass, another free, open-source, secure password manager.
It is important to note that Citadel is highly evasive and can bypass most threat detection security systems.
Meanwhile statements are awaited from all the major Password Management Systems.
source: www.techworm.net
