What do you get when you combine credential phishing, a banking Trojan and credit card phishing into a single cybercrime scheme?
Success.
The multi-stage cyber attack is happening in Europe now, but financial services InfoSec teams and banking customers in the U.S. should be watching for this cybercrime to cross the pond at any point.
"Credential phishing, banking Trojans, and credit card phishing schemes are common threats that we regularly observe both at scale and in more targeted attacks. However, Proofpoint researchers have recently observed phishing attacks that incorporate all of these elements in a single, multi-step scheme involving the Marcher Android banking Trojan targeting customers of large Austrian banks."
If you'd like, read the complete research on how the scheme works.
This is a revival and new use of the Marcher malware which has been documented in the wild for several years now.
