New Banking Trojan Named Ghimob Targets Over 150 Apps

Trojans are a huge problem when it comes to global internet infrastructure because of the fact that this is the sort of thing that could potentially end up compromising financial accounts as well as revealing all kinds of private and personal data that people would not want going around on the web. Banking trojans are particularly dangerous in this regard due to the reason that they can target actual bank accounts that people might have put their entire life savings into.

The latest banking trojan that is starting to cause a lot of problems in the industry is Ghimob, and this trojan has done quite a bit of damage particularly in South America. This trojan has targeted over 150 mobile banking apps, 112 of which are in Brazil, and it has the ability to bypass financial security protocols and conduct transactions from people’s apps without any trouble at all.

So far, every victim of Ghimob has been in Brazil. With all of that having been said and out of the way, it is important to note that the nature of Trojan makes it so that people all across South America might just start seeing attacks as well. The Trojan might just reach the shores of Europe as well, with Portugal and Germany at particular risk of seeing attacks from this malicious software.

The way the Trojan works is that its victims receive an email that is supposedly from a creditor that is asking for some more information on a matter. If the user clicks on this link they would see a number of security protocols that seem legitimate at first but while all of this is happening the Trojan will already have installed itself onto their device. It is important to note that if you have a debugger, the Trojan will notice this and delete itself since this would prevent it from operating. This shows how certain precautions can protect you even if your device has already been compromised in some way, shape or form.

Ghimob is quite a dangerous Trojan since it can record your screen and send it back to the malicious actor that is using it. This would allow said malicious actor or actors to see what your screen lock combination is among other things. The prevalence of this Trojan is something that everyone should try to take seriously.


Photo: Freepik / Master1305

No comments:

Post a Comment