At a glance.
- Godfather banking Trojan has deep roots in older code.
- FuboTV disrupted around World Cup coverage.
- Guardian hit with apparent ransomware attack.
- Threat actor abuses AWS Elastic IP transfer.
- Criminals impersonating other criminals' underworld souks.
- Moldova may be receiving more Russian attention in cyberspace.
- CISA releases six industrial control system advisories.
Godfather banking Trojan has deep roots in older code.
Group-IB reported this morning that the Godfather banking Trojan is currently in wide use against popular financial services worldwide. The researchers say, "Godfather is designed to allow threat actors to harvest login credentials for banking applications and other financial services, and drain the accounts. To date, its victims include users of over 400 international targets, including banking applications, cryptocurrency wallets, and crypto exchanges." The malware is based on the old Anubis Trojan, updated and improved. Godfather is offered in the C2C malware-as-a-service market, and it's distributed in the form of Trojanized applications, Group-IB says, sold in Google Play.