Updated versions of the Gozi malware are being used in currently active campaigns targeting global financial brands according to threat intelligence experts buguroo Labs. Targets of the attack include PayPal, CitiDirect BE, ING Bank, Société Générale, BNP Paribas, and the Bank of Tokyo. It’s expected that attacks currently being perfected in Poland, Japan and Spain, will soon be launched in the US and Western Europe. When an infected user at a target financial institution attempts a transaction, the malware’s C&C server is notified in real time and sends the user’s browser the information necessary for carrying out fraudulent transfers. The … Continue reading New malware campaign avoids detection to target major financial brands