#ManInTheBrowser

Chameleon Android Banking Trojan Targets Users Through Fake CRM App

by

August 7, 2024 at 03:30AM Cybersecurity researchers uncovered a new tactic used by threat actors behind the Chameleon Android banking trojan. Masquerading as a Customer Relationship Management (CRM) app, the campaign targeted a Canadian restaurant chain and expanded to Europe. The malicious app deceives users with fake login pages to deploy the Chameleon payload, enabling … Read more

Something nasty injected login-stealing JavaScript into 50K online banking sessions

by

December 20, 2023 at 06:56PM IBM Security discovered a JavaScript code injected into online banking pages, compromising 50,000 user sessions with 40+ banks globally. The DanaBot Windows malware infects PCs, waits for users to access bank sites, then steals login credentials. It targets financial organizations across continents. The malware communicates with a server and adapts … Read more