Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


GozNym Banker Malware Now Targeting Biggest Banks in USA

Researchers from IBM X-Force, specialists in cyber-crime attacks as well as malware configurations are warning about a banking malware GozNym, first detected during early-April, that's spreading its sinister diversion assaults across USA.

GozNym, just following two months since its establishment and execution of diversion assaults against banks within Poland, is being tested against four very big banks within USA. Not surprisingly, GozNym's operators have put their focus on the Trojan's make as it's used to strikes business banking institutions.

GozNym is popularly used for Web-injection assaults and its Web injects have been acquired from banker Trojan Gozi. Indeed, GozNym is named after combining 'Gozi' with the malware installer 'Nymaim.'

When GozNym attacks, it steals the credentials of the victim who's made to land on a phony website of the bank, while the credentials are tested on the real top-page of the banking site and utilized for carrying out spurious money transfer(s) from that victim's account. Besides, attackers play various socially-engineered tricks on the victim as he's retained on the phony site, getting him to divulge PII (personally identifiable information) along with dual-factor validation elements. Securityintelligence.com posted this, June 22, 2016.

After thoroughly analyzing GozNym along with its different assault techniques, IBM Security offers its research to assist targeted organizations and banks know additional things regarding this highly-dangerous malware as well as the most optimal methods of its mitigation. To begin with, service providers and banks should utilize adaptive solutions for detecting malware while use malware intelligence for safeguarding customer endpoints by receiving real-time knowledge about the capabilities and techniques of fraudsters.

Controllers of GozNym require server infrastructure for supporting the replicas of banking portals, as well as developers for continuously updating the phony websites for appearing as the actual ones.

Normally, according to Limor Kessem of IBM, GozNym diverts the top-page of the banking portal, but that isn't all.

For safety from malware infections, end-users should maintain up-to-date operating systems, make oft-used software up-to-date, while erase those they aren't using. Most importantly, they must ignore attachments and web-links within unsolicited e-mails as these are the usual mediums for delivering banker malware like GozNym.

ยป SPAMfighter News - 6/29/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page