New JavaScript Malware Targeted 50,000+ Users at Dozens of Banks Worldwide
21-Dec-23
As part of a campaign that has targeted more than 40 financial institutions worldwide, a new piece of JavaScript malware has been seen attempting to steal customers’ online banking account information. Using JavaScript web injections, the activity cluster is thought to have caused at least 50,000 compromised user sessions in North America, South America, Europe, and Japan.
According to IBM Security Trusteer, the campaign was discovered in March 2023. Security researcher Tal Langus stated that threat actors’ goal with the web injection module is probably to infiltrate well-known banking apps and, when the malware is deployed, intercept users’ credentials to gain access to and perhaps profit from their banking information.
