Slashdot Mirror

← Back to Stories (view on slashdot.org)

Tinba Trojan Targets Major US Banks

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes Tinba, the tiny (20 KB) banking malware with man-in-the-browser and network traffic sniffing capabilities, is back. After initially being made to target users of a small number of banks, that list has been amplified and now includes 26 financial institutions mostly in the US and Canada, but some in Australia and Europe as well. Tinba has been modified over the years, in an attempt to bypass new security protections set up by banks, and its source code has been leaked on underground forums a few months ago. In this new campaign, the Trojan gets delivered to users via the Rig exploit kit, which uses Flash and Silverlight exploits. The victims get saddled with the malware when they unknowingly visit a website hosting the exploit kit."

1 of 61 comments (clear)

  1. List of Banks by ewhenn · · Score: 4, Informative

    Bank of America
    Associated Bank
    America’s Credit Unions
    Etrade Financial Corporation
    US bank
    Banco de Sabadell
    Farmers & Merchants Bank
    HSBC
    TD Bank
    For anyone wondering....

    BancorpSouth
    Chase
    Fifth third bank
    Wells Fargo
    StateFarm
    Regions
    ING Direct
    M&T Bank
    PNC
    UBS
    RBC Royal Bank
    RBS
    CityBank
    Bank BGZ
    Westpack
    Scotiabank
    United Services Automobile Association


    Source: http://blog.avast.com/2014/09/...