The Limited Times

Now you can see non-English news...

How Ghimob attacks, the new banking virus that captures cell phones

2020-11-21T23:55:17.040Z

Attract victims with emails stating that they are in debt.11/20/2020 3:34 PM Clarín.com Technology Updated 11/20/2020 3:34 PM A new banking computer virus ( malware ) called Ghimob lures victims to install the malicious file through an email claiming they are in debt . The cybersecurity company Kaspersky warned this Friday about the Ghimob banking malware, the latest creation of the Guildma family of Trojans , known for its malicious activities in Lati



11/20/2020 3:34 PM

  • Clarín.com

  • Technology

Updated 11/20/2020 3:34 PM

A new

banking

computer virus (

malware

) called

Ghimob

lures victims to

install the malicious file

through an email claiming they are in

debt

.

The cybersecurity company Kaspersky warned this Friday about the Ghimob banking malware,

the latest creation of the Guildma family of Trojans

, known for its malicious activities in Latin America and other parts of the world.

Ghimob lures victims to install

a malicious file through an email

 stating that they are in debt and offering a link where they can get more information.

Once the Remote Access Trojan (RAT) is installed, the malware sends a notification of the

infection to its server

and includes the device model

, a list of installed applications, as well as whether the screen lock is enabled.

Even if the victims have a screen lock pattern, the malware is able to

record it and play it back

later to unlock the device.

This banking virus can spy on up to

153 mobile applications

, of which the majority are from banks, fintechs, investment applications and cryptocurrencies.

Once the infection has been carried out, the cybercriminal is able to

access the device remotely

and complete the fraud using the victim's phone, evading automatic identification and security measures implemented by financial institutions.

When carrying out the transaction, the cybercriminal overlays a black screen or a web page that occupies the entire screen, so that the victim does not see the movements made in the background.

Ghimob primarily targets users in Brazil, although it also targets Paraguay, Peru, Portugal, Germany, Angola, and Mozambique, according to Kaspersky statistics.

Source: clarin

All tech articles on 2020-11-21

You may like

News/Politics 2020-09-30T12:05:46.070Z

Trends 24h

Latest

© Communities 2019 - Privacy