Phishing emails target a bank’s users with malware – and make their landing page look more legitimate with fake Google reCAPTCHAs.
Old banking malware called Dorkbot has reemerged in 2018 to become a serious threat.
Google has removed the Interface Online Chrome extension from the Chrome Web Store. The plugin was used by criminals in Brazil to target corporate users with the aim of stealing banking credentials.
Researchers at My Online Security and the SANS Internet Storm Center have analyzed spam campaigns utilizing plausible imitations of legitimate banking domains to spread the Trickbot banking malware.