Black Friday Chaos: The Return of Gozi Malware

On November 29th, 2024, Black Friday, shoppers flooded online stores to grab the best deals of the year. But while consumers were busy filling their carts, cyber criminals were also seizing the opportunity to exploit the shopping frenzy. Our system detected a significant surge in Gozi malware activity, targeting financial institutions across North America. The […]

The post Black Friday Chaos: The Return of Gozi Malware appeared first on Security Intelligence.

Continue reading Black Friday Chaos: The Return of Gozi Malware

Disneyland Malware Team: It’s a Puny World After All

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode, an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic and Ukrainian. Continue reading Disneyland Malware Team: It’s a Puny World After All

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

The post Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID appeared first on Security Intelligence.

Continue reading Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Ursnif Campaign Waves Breaking on Japanese Shores

The Ursnif banking Trojan began targeting financial institutions in Japan during Q3 2017 and continues to operate in the region as we enter Q4.

The post Ursnif Campaign Waves Breaking on Japanese Shores appeared first on Security Intelligence.

Continue reading Ursnif Campaign Waves Breaking on Japanese Shores

Anatomy of an hVNC Attack

Cybercriminals who rely on remote control tactics to commit financial fraud may use hidden virtual network computing (hVNC) modules to cover their tracks.

The post Anatomy of an hVNC Attack appeared first on Security Intelligence.

Continue reading Anatomy of an hVNC Attack

GozNym’s Euro Trip: Launching Redirection Attacks in Germany

GozNym continued its trip around Europe by launching redirection attacks against 13 German banks. The volume of these attacks has spiked in recent months.

The post GozNym’s Euro Trip: Launching Redirection Attacks in Germany appeared first on Security Intelligence.

Continue reading GozNym’s Euro Trip: Launching Redirection Attacks in Germany