New Trojan malware campaign
August 14, 2017
A notorious banking Trojan is targeting customers of a major bank with a new email spam campaign, which directs victims to a fake login page that’s indistinguishable from that of their real bank.
The credential-stealing Trickbot banking malware has been hitting the financial sector since last year and targets online banking customers in the US, UK, Australia, and other countries.
Those behind this particular banking Trojan are continually developing it and have even been experimenting with EternalBlue, the Windows exploit that helped spread WannaCry and Petya.
But no matter how advanced malware gets, phishing remains a common attack vector for distributing malicious payloads.
Uncovered by security researchers at Cyren, the latest Trickbot distribution campaign sent over 75,000 emails in 25 minutes, all claiming to be from Lloyds Bank, one of the UK’s biggest banks.