With this banking malware, cyber criminals can receive real-time alerts

blog_metamorfo

Brazil is known for its love of soccer, and it’s soon to be known for kicking malware to the curb.

The goal is to get rid of the Metamorfo banking Trojan, which is jeopardizing the security of more than 20 online banks in Brazil and elsewhere. The malware was first identified in April of 2018, evolving slowly over time, and gradually spreading to new locales.

The Metamorfo attack starts out with phishing emails, providing users with “important” information. It then asks users to download a malicious .Zip file. When an unsuspecting person downloads the file, Metamorfo discretely launches into action on Windows machines.

On the users’ end, the compromised system prevents individuals from relying on the auto-complete functions for usernames and passwords. While the user retypes usernames and passwords in-full, the malware identifies the letters and numbers, sharing the information with the criminals.

“Metamorfo even includes a function…so the attackers can be alerted in real time as to when a victim is trying to access online services.”CLICK TO TWEET

Recently, banking clients in Brazil also witnessed the return of the CamuBot malware, known for targeting bank customers. A few months prior in Brazil and Mexico, online advertisements for fake McDonalds coupons spread malware that stole payment card and other banking information. News of Metamorfo has only heightened anxiety levels with banking customers.

Don’t let malicious hackers give your clients a run for their money. Threat prevention software and frequent patching and updates can help prevent attacks.

For more information on this story, visit ZDNet.

Source : Cybertalk.org