ESET detected in Portugal indicates that a trojan that specifically targets users of online banking.
In a press release, ESET indicates that its researchers have discovered a dangerous trojan banking in Portugal. This threat is specifically addressed to anyone who uses online banking and has had presence in Eastern Europe and Asia.
With the code name Win32/Spy.Hesperbot, this threat has keylogger capabilities, can create screenshots and video, configure a remote proxy and also includes other advanced features like the ability to establish a remote connection to the default user, which allows instant access to the infected system.
To trick users email is used PT with a credible graphic aspect that leads victims to run applications with malicious code. According to ESET, infections were detected in Portugal, the Czech Republic and the UK, with Turkey being the country with the highest number of infections.
In Portugal, the trojan is addressed to clients of CGD, BPI, Millennium BCP and Banco Santander Totta. The communiqué states that have so far been affected dozens of customers.
