Hackers have unleashed a revamped version of the Grandoreiro banking trojan, targeting over 1,500 banks and their customers in 60 countries.
How the Malware Works
The malware sends email notices that appear to be urgent government requests for payments. Clicking the link in the email downloads a malicious file that interacts with banking apps, facilitating fraudulent transactions.
Countries Targeted
The malware targets countries in Central and South America, Africa, Europe, and the Indo-Pacific. Notably, it has been used to impersonate government agencies in Mexico, Argentina, and South Africa.
Increased Global Reach
The malware’s updates and the growing use of banking apps suggest that hackers are seeking to expand their operations globally.
Arrests and Investigations
Earlier this year, authorities in Brazil, Spain, and Interpol made arrests and seized assets related to the Grandoreiro phishing scam. The criminal network is suspected of moving millions of euros in fraudulent transactions since 2019.
Protect Yourself
To protect yourself from this malware, be cautious of unsolicited emails requesting payments. Never click links or open attachments from unknown senders. Use strong passwords and enable two-factor authentication for your banking accounts.
