In the middle of last month, an increase in the activity of various types of banking Trojans that continuously seek new victims in Spain was discovered. It has recently been discovered that one of them, Grandoreiro, hides in fake traffic fines.
ESET, a company that develops antivirus software, has warned about the facts and has shown how the infection process is carried out, which begins by downloading the malicious file attached to an email.
The subject of the received message is very clear and encourages the victim to access the link: You have a pending fine. Desde aquí empieza la ingeniería social y la víctima no se va a percatar del dominio usado y de que el cuerpo del mensaje tiene varias faltas de ortografía.
Una vez más, los cibercriminales recurren a técnicas de ingeniería social para persuadir a las víctimas para que sean estafadas. En este caso se trata de instalar un troyano, pero en otras ocasiones podría tratarse de un ataque Phishing.
Fountain: Digital Shield| ESET
Image of Gerd Altmann in Pixabay