A new and stealthy cyber threat, the Coyote Banking Trojan, has emerged, targeting financial institutions and users primarily in Brazil. This sophisticated malware uses seemingly harmless LNK files to infiltrate systems, posing a significant risk to online banking security.
Over the past month, FortiGuard Labs, a cybersecurity research team, has identified this threat and detailed its complex infection process over the past month. This multi-stage malware that begins its attack with LNK files containing embedded PowerShell commands. These commands connect to remote servers to download additional malicious payloads. Once deployed, the Trojan can perform various malicious activities, including keylogging, capturing screenshots, and displaying phishing overlays to steal sensitive credentials. Its advanced capabilities and its ability to evade detection make it a formidable adversary in the cybersecurity landscape.
The primary targets are over 70 financial applications and numerous websites, including cryptocurrency platforms and hotel booking systems.
Cybersecurity authorities and organizations are taking significant steps to mitigate the impact of the Coyote Banking Trojan. Additionally, law enforcement agencies are collaborating internationally to trace and dismantle the infrastructure supporting this malware aiming to enhance the security of financial systems and safeguard sensitive user information from cybercriminals.
#CyTech #CyTechNewsRoom #Cybersecurity #CISO #CISOWorkplace™ #CIM #ThreatIntelligence #malware #CoyoteBankingTrojan
Leave a Reply