Security researchers are warning of a new type of Trojan horse.
Cyber criminals are apparently targeting German bank accounts.
Kassel - Not only Corona * is developing new variants - but also Trojans.
A short time ago, security researchers discovered a new variant of the “Zloader” Trojan, which first appeared in 2016.
With the further developed computer program, cyber criminals can apparently gain access to customer accounts of German banks.
Bank accounts at risk: a new type of Trojan can trick detection software
As the security experts from Sentinel Labs reported, they developed fake Google ads for team viewers and other software.
If users click on the download link contained therein, they will be redirected to a fake page.
Instead of the software they actually want, users download an installation file from the fraudsters.
This functions as a gateway for other malware such as "Zloader".
With the HNA consumer newsletter * you are always well informed.
You can find more interesting consumer news * on the HNA topic page.
The fraudsters use an approach that can even work under the radar of detection software.
To avoid exposure, “Zloader” also deactivates Windows Defender.
The criminals on the net are probably interested in the data of bank customers from Germany and Australia, suspected the experts from Sentinel Labs.
Bank accounts in sight: criminal practice apparently new
Apparently the type of criminal practice is new.
"The attack chain analyzed in this study shows how the complexity of the attack has grown in order to achieve a higher level of camouflage," commented security researcher Antonia Cocomazzi and security researcher Antonio Pirozzi in their report on the novel Trojan.
The security company MalwareBytes has been monitoring the malvertising campaign since the beginning of 2020. According to you, the cybercriminals first tried to get the malware onto users' computers via porn sites with the so-called smoke loader.
Since the end of August 2021, they have been imitating websites such as Zoom, Teamviewer and Discord for the smuggling of Trojans.
Most recently, fraudsters targeted the accounts of Sparkasse customers *.
The cyber criminals had used a new trick for this.
(Jan Wendt)
* hna.de is an offer from IPPEN.MEDIA.