Trojan Snifula is gaining ground on Japanese banks

Security

by Jimmy Nicholls| 29 July 2014

The range of victims is growing, according to Symantec.

The Snifula trojan is targeting more than 30 financial groups in Japan, including 12 regional banks, according to security firm Symantec.

Hackers are now using the malware to conduct man in the browser attacks to steal financial data from smaller companies' customers, in a broadening of the virus' range.

Symantec said: "As of July 2014, our telemetry shows that Japan is still ranked third and makes up almost 20% in terms of Trojan.Snifula activities.

"Considering our research, it seems that attackers are not about to quit targeting Japanese online banking customers."

A configuration file found by Symantec revealed 20 credit card sites and 17 online banking sites in Japan being targeted.

More than half of the targeted banks were said to be in the bottom half of the list comparing total deposit balances from customers.

"This clearly shows that the targeted banks are picked regardless of the institution's size," Symantec said.

The UK still accounts for a quarter of Snifula activity, with Germany responsible for a fifth while the US handles 15%.

Comments
Post a comment

Comments may be moderated for spam, obscenities or defamation.

Join our network

761 people like this.
2023 people follow this.

Security Intelligence

Buy the latest industry research online today!
See more

Suppliers Directory

Privcy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.