Banking trojan steals over $4m in just a few days2016-04-15 14:22 by Daniela
Researchers at IBM X-Force Research have discovered a new trojan, which successfully stole $4 million from more than 24 American and Canadian banks in just a few days. The trojan, called GozNym is a combination of two other popular Trojans, Nymaim and Gozi ISFB.
"The new GozNym hybrid takes the best of both the Nymaim and Gozi ISFB malware to create a powerful Trojan," say IBM X-Force researchers. "From the Nymaim malware, it leverages the dropper's stealth and persistence; the Gozi ISFB parts add the banking Trojan's capabilities to facilitate fraud via infected Internet browsers. The end result is a new banking Trojan in the wild."
The Trojan is being delivered primarily via email messages with so-called poisoned macros in a malware-infected attachment. Attackers then manipulate the victim's browser, steal credentials and transfer money out of their accounts.
It is believed that the malware is currently engaged in an active campaign with 72 percent of targets including business banking institutions, credit unions and retail banks.
Read more -here-