By Ionut Ilascu 24 Mar 2015
http://i1-news.softpedia-static.com/images/news2/Vawtrak-Banking-Malware-Targets-Canadian-Users-476646-2.jpg
Vawtrak C&C servers detected by Heimdal Security
Malware authors constantly apply minor updates
An ongoing malicious campaign delivering Vawtrak banking Trojan has been identified by security researchers to target customers of multiple banks in Canada.
The malware is also known by the names Neverquest and Snifula, and it is an advanced piece capable of stealing financial information and executing transactions from the compromised computer through remote desktop control, thus hiding its tracks.
Its authors rely on real-time web-injection tactics to present the victim with fraudulent screens asking for the information necessary for accessing online banking account.
This method is also used for harvesting two-factor authentication (2FA) codes that are generated by separate tokens, usually based on offline card verification or its PIN number.
Full Article
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.