The internet’s leading banking trojan

The internet’s leading banking trojan

A trojan horse is a malware included in or disguised as a regular application to perform malicious activity such as stealing valuable data and user credentials, stealthy monitoring or controlling a computer, or encrypting a victim’s data and later claim for a ransom (known as ‘ransomware’).

Banking trojans are a type of trojan malware that steals credentials used in financial institutions which are sent to a remote server in near real time. They can also modify the user’s browser session to ask for personal information such as payment card number and PIN, one-time passwords, or even perform and approve unauthorized transactions on the user’s behalf.

Some banking trojans have the ability to be kept in an almost undetectable dormant state, until a specific event triggers the malware for action, for example, when a specific banking website is accessed.

Emotet, Zeus and Gozi are examples of prevalent banking trojan malware that primarily spread through spam emails. Frequently, the infection occurs when the victim unknowingly executes a malicious script, macro-enabled document files, or downloads malware via a malicious link. The spam message is usually very appealing and may contain familiar branding and language.

 

What you can do to prevent banking trojans

• Install reputable antivirus software and keep it updated. Run a full scan periodically and whenever you receive a suspicious file or notice something unusual with your computer (for example, if the computer seems to slow down in certain circumstances).
• Regularly install the recommended operating system updates and patches.
• Do not follow links nor download files attached in unexpected messages. In case of doubt, check with the sender why he/she sent you the suspicious link or files, preferably using another means of communication (a text message, an instant message app, a phone call, etc.).
• To access electronic banking websites, type the address (URL) in your browser instead of following links. Use official app stores to install mobile apps, avoid downloading from unknown sources as they may contain malware. 
• Avoid using public computers or public WiFi to access your financial accounts. Access from trusted computers you know has the security features installed and updated.
• If possible, use a dedicated computer for financial transactions. Avoid sharing the computer with other persons or your family who may inadvertently install software you don’t know about.
• Avoid saving passwords in your smartphone or web browser.