It has been three weeks since first information about succesful attacks on Polish banks has reached our ears. It’s time to put together the technical description of how the attacks were performed. Continue reading “Technical analysis of recent attacks against Polish banks”
Tag: malware
Several Polish banks hacked, information stolen by unknown attackers
Polish banks are frantically scanning their workstations and servers while checking logs in the search of signs of infection after some of them noticed unusual network activity and unauthorised files on key machines within their networks. This is – by far – the most serious information security incident we have seen in Poland. Continue reading “Several Polish banks hacked, information stolen by unknown attackers”
Banking trojan, Gmail webinject, SMS message and malicious APK – all in one attack scenario
As many banks use SMS 2FA for transfer authorization, malware authors are constantly looking for new opportunities to take over control of PC infection victims’ smartphones. We have identified a new attack scenario that involves both PC and mobile devices infection by leveraging trust people have in Google services. Continue reading “Banking trojan, Gmail webinject, SMS message and malicious APK – all in one attack scenario”