Incidents

Bagle targeting banks

The latest variants of Bagle that we’ve detected over the past five days show that the virus writer behind this worm is shifting focus to on-line banks and payment systems. Some links that previously contained a range of spam tools now contain variants of Trojan-Spy.Win32.Banker.

It’s worrying that the author isn’t targeting specific on-line payment systems, as most malicious code writers do, but several hundred on-line banking systems. Systems around the world are at risk, including ones in Japan, the UK, and the USA.

As usual, we promptly issued antivirus updates to protect against the latest versions of Trojan-Spy.Win32.Banker.

Bagle targeting banks

Your email address will not be published. Required fields are marked *

 

Reports

APT trends report Q3 2022

This is our latest summary of advanced persistent threat (APT) activities, focusing on events that we observed during Q3 2022.

APT10: Tracking down LODEINFO 2022, part I

The first part of this report will provide technical analysis of the new infection methods such as SFX files and DOWNIISSA, a new downloader shellcode used to deploy the LODEINFO backdoor.

Subscribe to our weekly e-mails

The hottest research right in your inbox