Tatanga Trojan Utilized within Fake Insurance Scheme Attack
Trusteer is cautioning about Tatanga one financial malware that reportedly deceives Internet banking clients in such a way that they voluntarily endorse money-transfers, in reality unauthorized, out of their accounts in the name of merely activating a service that will insure against credit card embezzlements at zero cost, and which their banks supposedly provide.
First detected during May 2011, Tatanga comes from the family of Internet-banking Trojans. During a browsing session, this malware inserts malicious web-pages while affecting Web-browsers like Mozilla's Firefox, Microsoft's Internet Explorer, Google's Chrome, and also Safari and Opera.
Researchers at Trusteer elaborate that when the assault unleashes, the Trojan first notifies the victim about what's claimed as a free service, when his browser is running. Thereafter it provides one rogue insurance account to him that apparently values equivalent to the existing balance inside his bank account. Following this it's made to appear to him that the insurance coverage will safeguard him from any Internet fraud loss. Eventually, he's encouraged for endorsing the particular transaction, which will supposedly make the insurance workable.
The procedure, the victim is told, is to enter his bank's transaction endorsement policy number onto his cell-phone number. The number then lets Tatanga carry out its fake transfer unnoticeably as also get the victim's funds transmitted into an active money-mule account.
A screenshot that Trusteer took displays the Tatanga's notification, which's made to aim at Spanish-speaking targets, with the quoted portions deceptively shown as the victim's information.
It's been further found that the cyber criminals filch all of the funds in the victimized user's account incase they're in the range of $1,300 or EUR1,000 to $6,500 or EUR5,000. But, incase the sum exceeds the range, they steal just EUR5,000.
Security researcher Ayelet Heyman from Trusteer states that importantly, when Tatanga hijacks an endpoint, the malware's capability for carrying out Internet fraud is bound within what the criminals, only imagine. The above scam, however, demonstrates the immense creativity of the fraudsters with respect to devising fresh techniques for conning people off their money, Heyman points out. Help Net Security published this on May 8, 2012.
» SPAMfighter News - 17-05-2012