Brazilian College Student Dishes out Malware
Posted by: Timothy Weaver on 07/09/2015 08:36 AM
[
Comments
]
A 20-year-old Brazilian college student, identified by Trend Micro, is responsible for developing over 100 banking trojans selling each for around US$300.
The hacker, known online as 'Lordfenix', 'Hacker's Son' and 'Filho de Hacker', started his career posting on forums asking for help to develop a Trojan.
Since at least 2013, Lordfenix has become quite confident in developing malware tailored to pilfer financial information.
"Based on our research, Lordfenix has created more than 100 different banking Trojans, not including his other malicious tools, since April 2013," Trend Micro says. "With each Trojan costing around R$1,000 (roughly $320), this young cybercriminal channeled his talent in programming into a lucrative, illegal venture."
In hopes of expanding his reach, Lordfenix has been offering his banking trojans for free on some forums. The trojans are specifically targeting Brazilian banking websites including HSBC Brazil, Bank of Brazil, and Caixa.
However, 'clients' have to pay for a more powerful tool, TSPY_BANKER.NJH; a Trojan capable to identify when a user enters any of a target bank's URLs into their browser.
Once the victim enters the login details into a fake window, the information is sent back to the attackers address via email.
Source: The Hacker News
The hacker, known online as 'Lordfenix', 'Hacker's Son' and 'Filho de Hacker', started his career posting on forums asking for help to develop a Trojan.Since at least 2013, Lordfenix has become quite confident in developing malware tailored to pilfer financial information.
"Based on our research, Lordfenix has created more than 100 different banking Trojans, not including his other malicious tools, since April 2013," Trend Micro says. "With each Trojan costing around R$1,000 (roughly $320), this young cybercriminal channeled his talent in programming into a lucrative, illegal venture."
In hopes of expanding his reach, Lordfenix has been offering his banking trojans for free on some forums. The trojans are specifically targeting Brazilian banking websites including HSBC Brazil, Bank of Brazil, and Caixa.
However, 'clients' have to pay for a more powerful tool, TSPY_BANKER.NJH; a Trojan capable to identify when a user enters any of a target bank's URLs into their browser.
Once the victim enters the login details into a fake window, the information is sent back to the attackers address via email.
Source: The Hacker News
Comments
