Stealing banking details of users has become a common practice of attackers in recent times. A report published by the cybersecurity researchers at Fortinet detailed about a malware that is targetting online banks globally.
In this phishing scam, the attack starts with an email. These phishing emails sent to users of the banks claim to contain information about an invoice or a bill. To access the invoice content, the email requests the user to download a file that is in .ZIP format. Once the user downloads and runs the file on a Windows PC, the attack starts.
Now, the users have to type whole URLs, log in details and passwords in the browsers, with the auto-suggest and auto-fill functions disabled. This simple trick allows the keylogger function of the malware to record the actions from the input of the victim. Apart from these inputs, the malware also collects information about the system, such as OS version, computer name, and other general info.
Now to prevent falling prey to this malware, first, you should be careful about unknown or suspicious emails. Even if the emails claim to contain valuable information, be sure to check the source of the email and the file it requests you to download. Also, be sure to run the latest version of the software in your machine with all the latest security updates. Installing an antivirus can also help in detecting the malware before it is run on the system.