Showing posts with label Grandoreiro. Show all posts
Showing posts with label Grandoreiro. Show all posts

31 October 2024

Newsletter: Kaspersky uncovers new Grandoreiro light variant

[THIS IS A PRESS RELEASE]

Despite the arrest of important operators in early 2024, Grandoreiro continues to be used by its partners in new campaigns. Kaspersky Global Research and Analysis team (GReAT) has discovered a new light version focused on Mexico targeting around 30 banks. These findings are to be highlighted at the Security Analyst Summit (SAS) 2024. Remaining one of the most active threats globally, Grandoreiro accounts for around five percent of banking trojan attacks this year.  Mexico is one of the most targeted countries by Grandoreiro variants, including the new light version, seeing 51,000 recorded incidents this year.

After assisting an INTERPOL-coordinated action, which has led to Brazilian authorities arresting operators behind a Grandoreiro banking trojan operation, Kaspersky discovered that the group’s codebase has been split into lighter, fragmented versions of the trojan, to continue its attacks. Recent analysis has identified a specific light version focused primarily on Mexico, which has been used to target approximately 30 financial institutions. The creators likely have access to the source code and are launching new campaigns using the simplified legacy malware. 

28 March 2024

Newsletter: Kaspersky supports INTERPOL-coordinated action to disrupt Grandoreiro malware operation

[THIS IS A PRESS RELEASE]


Kaspersky has assisted an INTERPOL-coordinated action, which has led to Brazilian authorities arresting five administrators behind a Grandoreiro banking trojan operation. According to conservative estimates, the banking trojan operators are believed to have defrauded victims of more than 3.5 million euros (more than PHP 214 million).

Reader Advisory

Some articles posted in The SlickMaster's Files may contain themes, languages, and content which may neither appropriate nor appealing to certain readers. READER DISCRETION is advised.