Online Banking Fraud Blog

David García May 31, 2021 9 min read

Malware in SolarWinds: GoldMax, Sibot and GoldFinder

Ever since the attack using SolarWinds components became known last December, researchers ...
Start Reading
David García May 27, 2021 9 min read

New Distribution Chain Detected for the Javali Banking Trojan

In recent years, an increase in many banking trojans developed by attackers in Latin ...
Start Reading
David Morán May 24, 2021 8 min read

Osiris Banking Trojan for Windows

Morphisec identified a new campaign targeting German clients, characterized by the ...
Start Reading
David García May 17, 2021 8 min read

Sending of a Secure Electronic Comms: New Campaign by the Mekotio Banking Trojan

This isn't the first time that a trojan has used spam campaigns to distribute itself; in ...
Start Reading
David Morán Mar 15, 2021 2 min read

Toddler: Credential theft overlays and accessibility event logging

In January of 2021, a new family of previously undetected banking malware was discovered. ...
Start Reading
David García Feb 17, 2021 7 min read

VADOKRIST: Banking malware targeting brazilian entities

Vadokrist is a banking trojan designed to steal banking credentials from mainly Brazilian ...
Start Reading
David García Feb 5, 2021 4 min read

2020 Banking Malware Report

2020 has been a year marked by a virus, not one of the ones we usually talk about, but a ...
Start Reading
David García Feb 1, 2021 8 min read

SUNBURST: The backdoor present in SolarWinds Orion updates

On December 8th, FireEye announced that it had suffered an attack in which the company's ...
Start Reading
David García Jan 25, 2021 3 min read

MISPADU: theft of credentials through keylogging

Since June of this year and throughout the last quarter of the year, a banking malware ...
Start Reading
David Morán Jan 20, 2021 9 min read

2021 Banking Malware Trends

This past 2020 has been a year full of high-profile attacks and notorious ...
Start Reading
David García Jan 7, 2021 3 min read

BBTOK: malware focused on infection and credential theft of Mexicans

BBtok is a new banking trojan whose authors seem to be focused, at least for the time ...
Start Reading
David García Jan 2, 2021 3 min read

GRANDOREIRO: fraud based on code injections and phishing

Grandoreiro (also known as Delephant) is one of the most active Windows banking trojans ...
Start Reading