TeaBot: Banking Trojan for Android
As we've already discussed in previous articles, mobile phones are not free from banking trojans. This time we are going to be talking about a trojan for Android that was discovered by the Threat Intelligence and Incident Response (TIR) team at ...
New Spam Campaigns with a Variant of IcedID
Carrying out spam campaigns by email is one of attackers' most widely used means for introducing banking trojans among users. Today we are going to be talking about a campaign that Kaspersky researchers have observed, in which they have found ...
Ursnif and Cerberus: A Combined Attack
On this occasion, we are going to talk about Ursnif, also known as Gozi, and how it uses the Cerberus functionalities to automate fraudulent bank transactions.
Medusa Banking Trojan exploits several Social Networks to communicate with Control Server
Medusa is a banking trojan that started out in July 2020. During the summer of that year, new campaigns from this family were detected, although new samples were no longer seen after September.
Toddler Expands its Range of Affected European Entities
Today we are going to talk about Toddler, also known as NotFlubot, Anatsa or Teabot, a banking trojan for Android that we have talked a lot about in this report, and that was discovered for the first time in January of this year.
Bizarro: Infected Through Malicious Macros
Bizarro is a banking trojan whose main targets are Latin American banking entities, although in the last year it has begun to take an interest in European entities, mainly Spanish and Italian.
Flubot: Text Messages impersonating Delivery Services Companies
There are already several families of banking malware for Android that we have seen appear at the beginning of 2021, such as Toodler, Oscorp, and now, FluBot.
Oscorp: Android banking Trojan to steal cryptocurrency and 2FA codes
Oscorp is the new banking trojan that has appeared in the world of Android bankers at the beginning of 2021.
Updates to REvil ransomware
The REvil (Sodinokibi) ransomware has been the subject of several news articles related to cybersecurity in recent months. For example, one of the most notorious was the infection suffered by Acer, with a ransom of 50 million dollars that rose to ...
Malware in SolarWinds: GoldMax, Sibot and GoldFinder
Ever since the attack using SolarWinds components became known last December, researchers have continued to analyze its wake. Not only to uncover its scope, but also to understand all of its parts and thus improve the detection systems to avoid ...
New Distribution Chain Detected for the Javali Banking Trojan
In recent years, an increase in many banking trojans developed by attackers in Latin American has been detected, in the same way, that their implementations have become more sophisticated as we will see from the recently detected findings.
Osiris Banking Trojan for Windows
Morphisec identified a new campaign targeting German clients, characterized by the download of an Osiris client with the ability to communicate via Tor with the command-and-control server (C2).