Skip to main content

NukeBot trojan could attack banks in US and France soon

Published on: 9 Aug 2017

NukeBot trojan could attack banks in US and France soon

New malware designed to steal the credentials of online banking customers has been detected.

 

Banking trojan NukeBot, which was identified by Kaspersky Lab, injects malicious code into the webpage of an online banking service displayed in a victim’s browser before stealing user data and spoofing their credentials.

 

Earlier version of the trojan, known as TinyNuke, have been in the wild for some time but they lacked the necessary features to launch an attack.

 

There are already a number of compiled samples of this trojan online, typically shared on underground hacking forums. Most of these are rough, barely operational malware drafts, but Kaspersky’s experts have managed to identify some that pose a real threat.

 

A statement from Kaspersky read: “While criminals behind recent versions of this malware currently are not actively distributing NukeBot, this may - and likely will - change very soon.”

 

The company has spotted versions of NukeBot versions primed to attack customers of at least six US and French banks.

 

Kaspersky will warn the banking community and online banking customers about the potentially emerging threat and urges all interested parties to use the results of their research to better protect themselves.

 

Image: Neosiam/iStock