How Ghimob attacks, the new banking virus that captures cell phones

the country that opted for the soft hand against the Covid and that now rectifies after shooting the cases

Sweden has reversed its controversial epidemic control strategy based on more in recommendations than in restrictions and has chosen to prohibit the meetings of...

Germany is reducing its military presence in the Taliban-controlled Afghan province of Kunduz

The movement has been proposed by NATO's mission in Kabul because the conclusion of the summer and isn't a response to the week's...

Trump plans to pardon former advisor Michael Flynn

The president of United States, Donald Trump, Has believed pardon his former national security advisor Michael Flynn, who announced guilty in 2017...

The unintended consequences of Trump’s psychosis. More and more supporters of him want to boycott the Georgia elections that decide the fate of...

Who would have thought that spreading unfounded accusations of electoral fraud, conspiracy theories and contesting the outcome of the presidential election against reality could...

“This is actually certainly not Obama’s 3rd condition”

"The United States is actually back& rdquor;. That is actually the notification that the president-elect Joe Biden both in the discussion of...

Attract victims with emails stating that they are in debt.

A new computer virus (malware) called bank Ghimob that attracts victims to install the malicious file through an email stating that they have debts.

The cybersecurity company Kaspersky warned this Friday about the Ghimob banking malware, the latest creation of the Guildma Trojan family, known for its malicious activities in Latin America and other parts of the world.

Ghimob lures victims to install a malicious file via email stating that you are in debt and providing a link where they can get more information.

Once the Remote Access Trojan (RAT) is installed, the malware sends a notification of the infection to your server and includes device model, a list of installed applications, as well as if you have activated the screen lock.

Even if victims have a screen lock pattern, the malware is capable of record and play it then to unlock the device.

This banking virus can spy on up to 153 mobile apps, of which the majority are from banks, fintechs, investment applications and cryptocurrencies.

Once the infection is carried out, the cybercriminal is able to access device remotely and complete the fraud using the victim’s phone, evading automatic identification and the security measures implemented by financial institutions.

When performing the transaction, the cybercriminal overlays a black screen or a web page that occupies the entire screen, so that the victim does not see the movements made in the background.

Ghimob primarily targets users in Brazil, although it also targets Paraguay, Peru, Portugal, Germany, Angola, and Mozambique, according to Kaspersky statistics.



Related Articles