New version of trojan malware spreads through malicious Word documents

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,055
A new variant of trojan malware popular with cyber criminals is spreading via malicious Word documents with the aim of stealing bank details and other useful personal information.

The Ursnif trojan targets Windows machines and has existed in one form or another since at least 2007 when its code first emerged in the Gozi banking trojan. Several different variants of the malware have emerged since the code was leaked, as attackers take it and add their own custom capabilities for stealing banking details and other online account credentials.

Now researchers at cybersecurity firm Fortinet have identified a new version of Ursnif in the wild which is spreading via phishing emails containing weaponised Word documents. These infected lures are named with a "info_[date].doc" format and claim that the document has been created in a previous version of Word, requiring the user to enable macros to see it.
Read more below:
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top