Bold Ousaban steals credentials with obscene images as a decoy. ESET Research continues its regular series into demystifying Latin American banking trojans, this time with a deep dive into Ousaban (aka Javali) malware. According to ESET telemetry, Ousaban is active only in Brazil, although some sources claim it is active in Europe as well. The … More ESET research into Latin American banking trojans continues
Majority of respondents feel secure when using financial apps or online platforms, but many still use public Wi-fi while doing financial transactions online. As the GameStop stock-buying frenzy recently showed, financial transactions can now be easily conducted through a quick tap on an app. And as the COVID-19 pandemic has shown, more Americans have turned … More ESET Survey Finds Americans Use Digital Banking and Fintech Apps More Often, Cryptocurrency Use on the Rise Since Start of Pandemic
Throughout its monitoring, ESET analyzed thousands of malicious samples every month to help this effort. ESET has collaborated with partners Microsoft, Lumen’s Black Lotus Labs, NTT Ltd. and others in an attempt to disrupt Trickbot botnets. ESET contributed to the project by providing technical analysis, statistical information, and known command and control server domain names … More ESET takes part in global operation to disrupt Trickbot
Beware the tax bogeyman – there are tax scams aplenty. Although it’s been some weeks since the height of the income tax season in many countries around the globe, the year 2020 has been looking less than normal even for cybercriminal activity. For several months, various threat actors have been attempting to impersonate governmental organizations, … More Grandoreiro banking trojan impersonates Spain’s tax agency
ESET researchers yet again look into notorious Latin American banking trojans. This time they’ve explored Mekotio, a banking trojan targeting Spanish- and Portuguese-speaking countries: mainly Brazil, Chile, Mexico, Spain, Peru and Portugal. Mekotio boasts several typical backdoor activities, including taking screenshots, restarting affected machines, restricting access to legitimate banking websites, and, in some variants, even … More Mekotio banking trojan fakes security update, steals bitcoins and exfiltrates Google credentials
