Brazilian trojan banker is targeting Portuguese users using browser overlay
Security Affairs
MAY 7, 2020
One of the last occurrences was last December 2019, where the Lampion trojan operated in a very similar way, changing only the way the malware was distributed (via AWS S3 buckets and with the first stage encoded in a highly obfuscated VBS file). Malicious endpoints are still active at the moment of writing this report (05-05-2020).
Let's personalize your content