Risk Management December 19, 2024

Black Friday chaos: The return of Gozi malware

4 min read - On November 29th, 2024, Black Friday, shoppers flooded online stores to grab the best deals of the year. But while consumers were busy filling their carts, cyber criminals were also seizing the opportunity to exploit the shopping frenzy. Our system…

Banking & Finance April 18, 2018

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

3 min read - Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

Malware October 26, 2017

Ursnif Campaign Waves Breaking on Japanese Shores

5 min read - The Ursnif banking Trojan began targeting financial institutions in Japan during Q3 2017 and continues to operate in the region as we enter Q4.

Advanced Threats January 25, 2017

Anatomy of an hVNC Attack

6 min read - Cybercriminals who rely on remote control tactics to commit financial fraud may use hidden virtual network computing (hVNC) modules to cover their tracks.

Banking & Finance August 23, 2016

GozNym’s Euro Trip: Launching Redirection Attacks in Germany

4 min read - GozNym continued its trip around Europe by launching redirection attacks against 13 German banks. The volume of these attacks has spiked in recent months.

Advanced Threats July 12, 2016

Two Heads Are Better Than One: Going Under the Hood to Analyze GozNym

8 min read - IBM X-Force researchers recognized that the GozNym banking malware leverages features from two types of malware to make it double the threat.

Malware April 14, 2016

Meet GozNym: The Banking Malware Offspring of Gozi ISFB and Nymaim

5 min read - The new GozNym hybrid takes the best of both the Nymaim and Gozi ISFB malware to create a powerful Trojan targeting banks in the U.S. and Canada.

Advanced Threats February 18, 2016

Gozi Banking Trojan Upgrades Build to Inject Into Windows 10 Edge Browser

5 min read - The developers of the Gozi banking Trojan have built some improvements into the malware that now allow it to attack Windows 10 operating systems.

Threat Intelligence August 18, 2015

Gozi Goes to Bulgaria — Is Cybercrime Heading to Less Charted Territory?

4 min read - The latest version of the Gozi banking Trojan looks to target banks in Bulgaria. This could be just the first instance of the malware in Eastern Europe.

Endpoint March 13, 2012

SIM-ple: Mobile Handsets Are Weak Link in Latest Online Banking Fraud Scheme

3 min read - Two online banking fraud schemes, which defeat banks' one-time password (OTP) authorization systems, show how personal data is vulnerable through mobile.