Skip to main content

Tag: banking trojan

9 articles

Southern European city street with a blurred laptop on a desk in a small business district.

Ousaban Trojan Expands to Spain, Portugal with Advanced Evasion Tactics

Meet Ousaban, a sneaky banking Trojan that's evolved from decade-old tactics to target unsuspecting customers in Spain and Portugal, starting with a clever phishing PDF disguised as a broken file. This highly optimized threat profiles its victims before striking, making it a force to be reckoned with.

Analyst 207
Cluttered financial workspace with computer and papers in modern office setting.

Banking Trojan Targets Crypto Firms with Sophisticated Attacks

A new banking Trojan, dubbed TCLBanker, is wreaking havoc on crypto and finance platforms, allowing hackers to remotely control infected systems and steal sensitive info. This sophisticated attack, linked to North Korea's notorious Lazarus Group, has already led to the largest crypto platform hack of 2026.

Analyst 207
Horabot Malware Targets Latin America, Europe in Sophisticated Phishing Drive

Horabot Malware Targets Latin America, Europe in Sophisticated Phishing Drive

Beware of the sneaky Horabot malware that's targeting businesses and users in Latin America and Europe with cleverly disguised PDF attachments that deliver a devastating banking trojan. This sophisticated phishing campaign, linked to a notorious Brazilian cybercrime group, could be the ultimate cyber threat to your financial security.

Analyst 207
Python-Based WhatsApp Worm Exclusive: Dangerous Stealer

Python-Based WhatsApp Worm Exclusive: Dangerous Stealer

What would you do if your WhatsApp started messaging your friends without you? Researchers warn the Delphi-based Eternidade Stealer is hijacking accounts and weaponizing contact lists—using social engineering and IMAP-resolved C2 to spread quickly and dodge static defenses.

Analyst 207
Eternidade Stealer Trojan Exclusive Severe Cybercrime Surge

Eternidade Stealer Trojan Exclusive Severe Cybercrime Surge

Eternidade Stealer is a new banking trojan that weaponizes Brazil’s favorite app, WhatsApp, turning ordinary messages into a fast-moving credential theft campaign. Researchers warn one click can unleash downloaders that harvest browser-stored credentials and cookies, making everyday chats unexpectedly risky for users and businesses.

Analyst 207
WhatsApp Malware Exclusive: Brazil Banks’ Worst Threat

WhatsApp Malware Exclusive: Brazil Banks’ Worst Threat

Imagine the app you use to call your mother being used to rob her bank — thats Brazils new reality as researchers link a WhatsApp-spread program called Maverick to the Coyote banking malware family. Built in .NET to decrypt, monitor and inject into banking sessions, this WhatsApp-delivered threat marks a worrying leap in scale and sophistication against Brazilian users and banks.

Analyst 207
Android banking trojan: Stunning, Dangerous Klopatra

Android banking trojan: Stunning, Dangerous Klopatra

A new Android trojan called Klopatra is quietly hijacking phones with a hidden VNC channel—letting attackers watch and control screens to bypass MFA and steal funds, especially across Spain and Italy. Keep your device updated and apps from official stores, and banks should adopt out‑of‑band confirmations and behavioral analytics to block these stealthy attacks.

Analyst 207
Hook Android Trojan: Stunning Dangerous Ransomware Threat

Hook Android Trojan: Stunning Dangerous Ransomware Threat

A new Hook Android Trojan variant now combines banking fraud with ransomware-style lockouts, letting attackers both steal credentials and hold phones hostage. Millions of users should tighten app sources, review permissions, and keep backups as defenders scramble to catch up.

Analyst 207
ERMAC v30 Exposed: Stunning Risky Banking Threat

ERMAC v30 Exposed: Stunning Risky Banking Threat

A public leak of ERMAC v3.0’s source code has pulled back the curtain on a sharper, more widespread Android banking trojan—revealing both powerful theft techniques and the operators’ sloppy mistakes that could help investigators. It’s a stark reminder that transparency can empower defenders, but also risks giving other crooks a head start if we don’t act fast.

Analyst 207