Collaborate Disseminate
A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode, an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic and Ukrainian. Continue reading Disneyland Malware Team: It’s a Puny World After All
Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.
The post Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID appeared first on Security Intelligence.
Continue reading Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID
The Ursnif banking Trojan began targeting financial institutions in Japan during Q3 2017 and continues to operate in the region as we enter Q4.
The post Ursnif Campaign Waves Breaking on Japanese Shores appeared first on Security Intelligence.
Continue reading Ursnif Campaign Waves Breaking on Japanese Shores
Cybercriminals who rely on remote control tactics to commit financial fraud may use hidden virtual network computing (hVNC) modules to cover their tracks.
The post Anatomy of an hVNC Attack appeared first on Security Intelligence.
GozNym continued its trip around Europe by launching redirection attacks against 13 German banks. The volume of these attacks has spiked in recent months.
The post GozNym’s Euro Trip: Launching Redirection Attacks in Germany appeared first on Security Intelligence.
Continue reading GozNym’s Euro Trip: Launching Redirection Attacks in Germany