Bold Ousaban steals credentials with obscene images as a decoy. ESET Research continues its regular series into demystifying Latin American banking trojans, this time with a deep dive into Ousaban (aka Javali) malware. According to ESET telemetry, Ousaban is active only in Brazil, although some sources claim it is active in Europe as well. The … More ESET research into Latin American banking trojans continues
Majority of respondents feel secure when using financial apps or online platforms, but many still use public Wi-fi while doing financial transactions online. As the GameStop stock-buying frenzy recently showed, financial transactions can now be easily conducted through a quick tap on an app. And as the COVID-19 pandemic has shown, more Americans have turned … More ESET Survey Finds Americans Use Digital Banking and Fintech Apps More Often, Cryptocurrency Use on the Rise Since Start of Pandemic
Throughout its monitoring, ESET analyzed thousands of malicious samples every month to help this effort. ESET has collaborated with partners Microsoft, Lumen’s Black Lotus Labs, NTT Ltd. and others in an attempt to disrupt Trickbot botnets. ESET contributed to the project by providing technical analysis, statistical information, and known command and control server domain names … More ESET takes part in global operation to disrupt Trickbot
ESET researchers yet again look into notorious Latin American banking trojans. This time they’ve explored Mekotio, a banking trojan targeting Spanish- and Portuguese-speaking countries: mainly Brazil, Chile, Mexico, Spain, Peru and Portugal. Mekotio boasts several typical backdoor activities, including taking screenshots, restarting affected machines, restricting access to legitimate banking websites, and, in some variants, even … More Mekotio banking trojan fakes security update, steals bitcoins and exfiltrates Google credentials
Another in our occasional series demystifying Latin American banking trojans In this installment of our series, we introduce Grandoreiro, a Latin American banking trojan targeting Brazil, Mexico, Spain and Peru. As such, it shows unusual effort by its authors to evade detection and emulation, and progress towards a modular architecture. We have seen Grandoreiro being … More Grandoreiro: How engorged can an EXE get?