Security News > 2021 > April > Experts uncover a new Banking Trojan targeting Latin American users

Researchers on Tuesday revealed details of a new banking trojan targeting corporate users in Brazil at least since 2019 across various sectors such as engineering, healthcare, retail, manufacturing, finance, transportation, and government.

"These pop-ups contain fake forms, aiming to trick the malware's victims into entering their banking credentials and personal information that the malware captures and exfiltrates to its servers," ESET researchers Facundo Muñoz and Matías Porolli said in a write-up.

In August 2020, ESET uncovered a Latin American banking trojan called Mekotio that displayed similar fake pop-up windows to its victims in an attempt to entice them into divulging sensitive information.

This is not the first time banking trojans have been spotted in the wild that have singled out Brazilian users.

Then earlier this January, ESET revealed a new Delphi-based banking trojan named "Vadokrist" that was found to target Brazil exclusively while sharing similarities with other malware families like Amavaldo, Casbaneiro, Grandoreiro, and Mekotio.

"Janeleiro follows the unique blueprint for the core implementation of the fake pop-up windows as many LATAM banking trojans, this does not seem to be a coincidence or inspiration: this actor employs and distributes Janeleiro sharing the same infrastructure as some of the most prominent of these active malware families," the researchers concluded.

News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/9zERzM6xf90/experts-uncover-new-banking-trojan.html