August 14, 2017 By Rafia Shaikh
Banking trojan displays correct URL and legit SSL certificate
While stealing banking credentials using phishing isn’t a new technique, Trickbot banking trojan takes it “to another level by showing the user the correct URL of the online bank and a legitimate SSL certificate, so the user sees nothing unusual,” Cyren reports.The emails sent in the latest spam spree showed customers a well-created HTML email with the from field showing Lloyds Bank, and the subject line of “Incoming BACs,” a reference to BACS system that allows customers to make payments directly from one email account to another. The email suggests that the target needs to review and sign attached documents.
http://cdn.wccftech.com/wp-content/uploads/2017/08/Trickbot-banking-trojan.png
Full Article.