We have repeatedly discussed the subject of computer security and how important is to never lower your guard when you have an online current account. Defending your savings from web threats is not easy: the basic precautions concern, on the one hand, the constant updating of anti-virus and operating systems, on the other, the maximum attention to phishing attacks.
Today we want to give a name to these cyber threats by talking about the four main malware currently most widespread in Italy and most dangerous for those who have an online current account: Danabot, Gootkit, Sload, Zeus / Panda.
Let’s see them specifically:
- Danabot has spread to Italy in 2018 thanks to a phishing campaign with the subject “tax returns”. The dangerous malware is capable of manipulating user navigation to intercept login and web sessions of home banking portals, email and real estate providers, as well as many other platforms. Unfortunately, it is a very persistent malware that, thanks to a specific code, is run again every time the system is restarted.
- Gootkit is a multipurpose malware that spreads through malicious emails delivered in certified e-mail boxes of public administrations. It succeeds in stealing credentials and encryption keys from smart cards and security tokens and is, to date, the most effective trojan in the banking sector thanks to the speed with which it manages to provide the attacker with data to access the victim’s online current account.
- SLoad, after having hit the United Kingdom and Canada, arrives also in Italy at the end of 2018. Its peculiarity lies in the fact that it is able to remain hidden from antivirus systems for a long time, giving hackers all the time to steal sensitive data. Also in this case, it is a threat widespread following a phishing e-mail campaign.
- Zeus / Panda is a threat characterized by the ability to perform so-called man-in-the-browser attacks: it manages to modify the user’s browsing on home banking portals by stealing sensitive data such as passwords, tokens and cookies related to user sessions of banking or financial institutions. It has spread in Italy through a campaign of attacks by sending false invoices.
Knowing the main threats is important to know how to best defend your data, if you are interested in opening an online current account that meets your security needs, do not hesitate to contact us.