February 8, 2024 at 04:23PM
A new banking Trojan coined “Coyote” is targeting 61 online banking apps, spreading mainly in Brazil. Identified by Kaspersky, it’s armed with advanced components and could pose global threats. With history pointing to expansion and evolution, security teams need to be vigilant. “Coyote” is using unique tactics to avoid detection and is part of Brazil’s thriving market of financial malware. Even though it’s currently focused on Brazil, there are concerns about its potential global impact, as Brazilian bank Trojans have been crossing borders.
The meeting notes discuss the discovery of a new banking Trojan named “Coyote,” which is targeting 61 different online banking applications, primarily in Brazil. The Trojan employs various advanced components and functionalities, representing a significant evolution in Brazil’s financial malware market. While currently focused on the Brazilian market, there are warnings about potential expansion and the need for organizations to be prepared. The notes also highlight the history of banking Trojans evolving into fully fledged initial access Trojans and backdoors. Additionally, it discusses the use of Squirrel as its initial stage loader and the unique usage of the programming language Nim, making it the first banking Trojan identified using Nim. Furthermore, it emphasizes the global impact of Brazilian banking Trojans, noting their expansion to other countries and the challenges of law enforcement in addressing these cyber threats.
If you need further details or specific actions to be taken, please let me know.