HackDig : Dig high-quality web security articles

Bizarro: a banking Trojan full of nasty tricks

Researchers have discovered a new banking Trojan that has been found targeting customers of European and South American banks. They have dubbed the new Trojan Bizarro. How does Bizarro spread? The Bizarro malware spreads via Microsoft Installer (MSI) packages. Identified sources so far have been spam emails and attackers may also use social engineering
Publish At:2021-05-18 14:49 | Read:223 | Comments:0 | Tags:Malware banking Trojan bitcoin bizarro brazilian clipboard s

What is Ghimob Malware?

A new Android malware strain ‘Ghimob’ is mimicking third-party mobile (mainly banking) apps to spy and steal user data when downloaded and installed. This Trojan virus steals data from users, primarily targeting online banking and cryptocurrency. As of the end of 2020, it is believed to siphon data from more than 153 apps by asking for accessibi
Publish At:2021-05-07 09:51 | Read:453 | Comments:0 | Tags:Mobile Security Software & App Vulnerabilities Banking & Fin

Alien Mobile Malware Evades Detection, Increases Targets

<div> <img src="https://info.phishlabs.com/hs-fs/hubfs/Alien%20Mobile%20Malware%20Evades%20Detection,%20Increases%20Targets.jpg?width=1600&amp;name=Alien%20Mobile%20Malware%20Evades%20Detection,%20Increases%20Targets.jpg" alt="Alien Mobile Malware Evades Detection, Increases Targets" width="1600" style="width: 1600px; margin: 0px 0px 20px;">
Publish At:2021-05-04 17:41 | Read:604 | Comments:0 | Tags:Malware Banking Trojan Mobile

Surge in ZLoader Attacks Observed

<div style="font-size: 16px;"> <span style="color: #000000;"><img src="https://info.phishlabs.com/hs-fs/hubfs/Surge%20in%20ZLoader%20Attacks%20Observed.jpg?width=1600&amp;name=Surge%20in%20ZLoader%20Attacks%20Observed.jpg" alt="Surge in ZLoader Attacks Observed" width="1600" style="width: 1600px; margin: 0px 0px 20px;"></span>
Publish At:2021-02-23 17:53 | Read:743 | Comments:0 | Tags:Banking Trojan Ransomware

QakBot Big Game Hunting continues: the operators drop ProLock ransomware for Egregor

The QakBot banking trojan has dropped the ProLock ransomware, they are now opting for the Egregor ransomware in their operations. Group-IB, a global threat hunting and intelligence company headquartered in Singapore, has discovered that QakBot (aka Qbot) operators have abandoned ProLock for Egregor ransomware. Egregor has been actively distributed si
Publish At:2020-11-20 10:18 | Read:753 | Comments:0 | Tags:Breaking News Cyber Crime Malware banking trojan Egregor ran

Tetrade hackers target 112 financial apps with Ghimob banking Trojan

Researchers from Kaspersky Lab spotted a new Android banking Trojan, dubbed Ghimob, that is able to steal data from 112 financial Apps Ghimob is a new Android banking Trojan discovered by Kaspersky that is able to steal data from 112 financial apps. In July, cybersecurity researchers from Kaspersky Lab have detailed four different families of Brazilian
Publish At:2020-11-10 08:29 | Read:1138 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware banking trojan Ghi

Source code of Cerberus banking Trojan leaked on underground forums

The source code of the infamous Cerberus banking Trojan has been released for free on underground hacking forums following a failed auction.  The author of the Cerberus banking Trojan has released the source code of the malware on underground hacking forums following a failed auction.  In July, the authors of the notorious Cerberus Android banking troj
Publish At:2020-09-16 19:05 | Read:1136 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware banking trojan Cer

Tedrade banking malware families target users worldwide

The Tetrade term coined by Kaspersky experts to refer four large banking trojan families developed and spread by Brazilian crooks worldwide. Cybersecurity researchers from Kaspersky Lab have detailed four different families of Brazilian banking trojans, tracked as Tetrade, that have targeted financial institutions in Brazil, Latin America, and Europe.
Publish At:2020-07-20 05:01 | Read:1470 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware banking trojan Tet

Shining a light on “Silent Night” Zloader/Zbot

When it comes to banking Trojans, ZeuS is probably the most famous one ever released. Since its source code originally leaked in 2011, several new variants proliferated online. That includes a past fork called Terdot Zbot/Zloader, which we extensively covered in 2017. But recently, we observed another bot, with a design reminiscent of ZeuS, that seems to
Publish At:2020-05-24 07:20 | Read:1153 | Comments:0 | Tags:Malware Threat analysis banking Trojan banking Trojans HYAS

TrickBot Campaigns Targeting Users via Department of Labor FMLA Spam

IBM X-Force monitors billions of spam emails a year, mapping trending, malicious campaigns and their origins. Recent analysis from our spam traps uncovered a new Trickbot campaign that currently targets email recipients with fake messages purporting to come from the U.S. Department of Labor (DoL). The spam leverages the Family and Medical Leave Act (FMLA), w
Publish At:2020-05-03 08:13 | Read:1498 | Comments:0 | Tags:Malware Threat Intelligence Banking Trojan Cybercrime Fraud

New Android Banking Trojan Targets Spanish, Portuguese Speaking Users

IBM X-Force research recently analyzed a new Android banking Trojan that appears to be targeting users in countries that speak Spanish or Portuguese, namely Spain, Portugal, Brazil and other parts of Latin America. This Trojan, which was created atop an existing, simpler SMSstealer.BR, was supplemented with more elaborate overlay capabilities. That portion o
Publish At:2020-04-21 06:45 | Read:2049 | Comments:0 | Tags:Malware Mobile Security Android Android Malware Banking Malw

Grandoreiro Malware Now Targeting Banks in Spain

During the past few months, IBM X-Force researchers have noticed a familiar malware threat that typically affects bank customers in Brazil has spread to attack banks in Spain. The rise in campaigns prompted us to look into it further. Grandoreiro, a remote-overlay banking Trojan, has migrated to Spain without significant modification, proving that attackers
Publish At:2020-04-13 10:30 | Read:1586 | Comments:0 | Tags:Malware Threat Research Banking Banking Malware Banking Troj

ITG08 (aka FIN6) Partners With TrickBot Gang, Uses Anchor Framework

The past two years have borne witness to the increasing collaboration between organized cybercrime groups to avoid duplication of efforts and maximize profits. Although this collaboration has primarily occurred between gangs developing and distributing well-known banking Trojans, such as Emotet, TrickBot and IcedID, it does not stop there. In a new and dange
Publish At:2020-04-07 08:25 | Read:1984 | Comments:0 | Tags:Advanced Threats Threat Intelligence Banking Trojan Collabor

Breaking the Ice: A Deep Dive Into the IcedID Banking Trojan’s New Major Version Release

The IcedID banking Trojan was discovered by IBM X-Force researchers in 2017. At that time, it targeted banks, payment card providers, mobile services providers, payroll, webmail and e-commerce sites, mainly in the U.S. IcedID has since continued to evolve, and while one of its more recent versions became active in late-2019, X-Force researchers have identifi
Publish At:2020-04-01 07:12 | Read:1825 | Comments:0 | Tags:Fraud Protection Malware Threat Research Banking Malware Ban

Zeus Sphinx Trojan Awakens Amidst Coronavirus Spam Frenzy

The recent months have created a new reality in the world as the novel Coronavirus pandemic spread from country to country raising concerns among people everywhere. With spammers and malware distributors already being accustomed to riding trending news, the COVID-19 theme has been exploited thoroughly by a large variety of spam and malspam campaigns. It appe
Publish At:2020-03-30 02:05 | Read:2463 | Comments:0 | Tags:Malware Threat Intelligence Banking Malware Banking Trojan C

Tag Cloud