Posts Tagged ‘Banking Trojan’

ESET LogoResearchers has discovered ‘Zeus-like Trojan‘.

ESET’s researchers has discovered a new effective web banking Trojan – Hesperbot (Win32/Spy.Hesperbot), whose activities are aimed at users from Turkey, the Czech Republic, Portugal and UK.

Malicious software can capture keystrokes, take screenshots with the user’s screen , record video , and configure proxy and create a hidden VNC- server on the infected system.

Hesperbot spreads by sending out phishing emails and often tries to infect mobile devices that operate on the basis of Android, Symbian and Blackberry. Experts notes – the functionality of the new malware is reminiscent of another well-known banking Trojan – Zeus. (more…)

Banking trojan for Android

Banking trojan for Android

The new banking trojan for Android spread via SMS-phishing.

The company’s specialists McAfee Labs discovered a new Trojan for the bank’s mobile operating system Android, identified by McAfee experts as Android / FakeBankDropper.A and Android / FakeBank.A.

A malicious program that operates mainly in South Korea, the program replaces the legitimate mobile banking provides its customers with local banks.

According to experts, the malware spreads via SMS-phishing. Typically, the mobile device of the victim comes fake an SMS-message, the sender is supposedly the Financial Services Commission. The message contains a request to install a new application on a device to protect against malware.


Banking Trojan

Banking Trojan

A malicious program disguised as a PDF-document that is sent to users via email.

The MalwareBytes company’s specialists have found banking Trojan that steals passwords, signed by a valid digital certificate issued by DigiCert.

DigiCert representatives confirm a certificate, but claim that it was issued to legally registered companies Buster Paper Comercial Ltda. Licenses are issued in accordance with the guidelines of the digital industry. With the use of certificates from DigiCert clear that they do not apply to malware. Once in DigiCert learned about the illegal activities associated with the certificate, it immediately recalled.

Detected by MalwareBytes malware disguised as a PDF-document, which is sent to the victims alleged in the letter mail and supposedly contains the invoice. As conceived by intruders, a file format will force users to open it, after which the program is installed on a PC keylogger, Steals banking credentials. (more…)

Malware Trojan HorseExperts Trusteer have fixed a new attack Banking Trojan Tatanga. During the attack, designed to intercept one-time code generated by the personal TAN-generator, using social engineering techniques. TAN-codes (Transaction Authorization Number) used in online banking systems as an additional level of protection against fraud in the operations on customer accounts.

This is a one-time passwords that are generated for each transaction, and their input is intended to support the authenticity of the person registered in the system and gives the bank a “good” for the completion of the transaction. In the banking environment, there are many different procedures for confirmation of transactions one-time password. In Germany, for example, are popular mTAN (code sent to the client in the form of SMS) and chipTAN – system and giving the customer a personal TAN-generator. The latter creates a one-time password based on the flashing image that appears when entering the bank site, it reads directly from the PC screen. (more…)