Online Banking Malware Up 29% From Previous Quarter

Banking malware jumps from PC to mobile platform, finds Trend Micro Q2 2013 Security Threat Round Up report.

hidden September 10, 2013 11:17:52 IST
Online Banking Malware Up 29% From Previous Quarter

Increased online banking threats and availability of sophisticated, inexpensive malware toolkits are among the growing concerns cited in Trend Micro's Q2 2013 Security Roundup Report. The report warns users about the increasing hazards of online banking. The online banking malware saw 29 percent increase from the previous quarter- from 113,000 to 146,000 infections.

“We found an online banking malware that modifies an infected computer’s HOSTS file to redirect a customer of certain banks to phishing sites. We also saw more Citadel variants (detected as ZBOT) targeting different financial service institutions. These malware not only target the big banks but also smaller ones, including those that exclusively cater to online banking customers. As predicted, cybercriminals carried out developments in malware distribution and refinement for existing tools,” said Dhanya Thakkar, Managing Director, India & SAARC, Trend Micro.

More online banking threats were seen in different countries this quarter, specifically in Brazil, South Korea, India and Japan. These highlighted the need for increased awareness of online banking security. Cybercriminals also came up with more diverse attacks that used various social engineering lures, single sign-on (SSO) and multi-protocol services, and blogging platforms for their malicious schemes.

The FAKEBANK malware spotted this quarter spoofs legitimate apps. It contains specific Android application package files (APKs), which it copies to a device’s Secure Digital (SD) card. Using the APK files, the malware displays icons and a user interface that imitates legitimate banking apps. This technique is reminiscent of PC banking Trojans that monitor users’ browsing behaviors and spoofs banking sites.

As predicted, cybercriminals have not generated completely new threats and instead opted to repackage old ones. The online banking malware volume significantly increased this quarter due in part to the rise in the ZeuS/ZBOT malware volume in the wild. Online banking threats are spreading across the globe and are no longer concentrated in certain regions like Europe and the Americas.

In the cybercriminal underground, the CARBERP source code was “leaked,” making the creation of banking Trojans even easier to do for bad guys. Meanwhile, other online banking Trojan toolkits like ZeuS, SpyEye, and Ice IX are already available for free, making it easier for any skilled hacker to obtain their source codes.

Updated Date:

also read

'No one shares ordinary': Gucci digitally outfits Gen-Z in metaverse foray with Roblox
Lifestyle

'No one shares ordinary': Gucci digitally outfits Gen-Z in metaverse foray with Roblox

Players in the metaverse say the big-name fashion collaboration represents a new era of virtual-real world interplay.

iQoo Z3 India launch highlights: Launched at a starting price of Rs 19,990; is now available for purchase on Amazon India
News & Analysis

iQoo Z3 India launch highlights: Launched at a starting price of Rs 19,990; is now available for purchase on Amazon India

The smartphone will be powered by Snapdragon 768G chipset and might offer up to 8 GB RAM and up to 256 GB of internal storage.

Jio users can now recharge their numbers via WhatsApp: How it works
News & Analysis

Jio users can now recharge their numbers via WhatsApp: How it works

Users will also options to choose from different payment methods including e-wallets, UPI, credit and debit cards and so on.