216.73.217.86

Banking Trojans: Mekotio Looks to Expand Targets, BBTok Abuses Utility Command

· Published 06/09/2024 09:53 · Modified 06/09/2024 10:17

Export JSON

Essential information

Published
06/09/2024 09:53
Modified
06/09/2024 10:17
Tags
2024-09-06 bbtok mekotio
Related entities
9 observables, 10 techniques (mitre), 5 others

Description

Latin America is experiencing a surge in sophisticated phishing attacks targeting financial systems, with banking Trojans like , , and Grandoreiro re-emerging. These attacks use business transaction and judicial-related lures to compromise victims. is expanding its targets beyond Latin America, while focuses on the region's financial sector. Both employ new techniques to evade detection, such as obfuscated scripts and abuse of legitimate Windows utilities. Manufacturing, retail, technology, and financial services are the most affected industries. The evolving tactics and broader targeting underscore the need for enhanced cybersecurity measures, including advanced threat detection systems, regular security updates, and employee education on recognizing phishing attempts.

External references