Targeted Trojan Hits Banks Running Older Operating Systems
A new Trojan that targets financial institutions has infected several servers belonging to banks and credit unions, as well as some personal computers.
The malware, identified as Trojan.Stabuniq, infects systems via spam email and website exploit kits, targeting financial institutions, but missing its targets in many instances; roughly half of the IP addresses with the Trojan come from private homes.
It's possible that the attackers are operating under the assumption that banks that run older and unsupported operating systems will have less robust security — and they might be right.
The Trojan appears to be doing little more than collecting information, which it sends to a command and control center. Symantec said it believes the malware's masters may just be doing reconnaissance at this point.
Follow Ben on Twitter @benkwx.