A new kind of banking trojan has just appeared in the United States and Canada by attacking the customers of 24 different banks and e-commerce websites since early April.
A condensed technology
GozNym resembles a traditional banking malware in the same vein as Zeus and Citadel. It uses a rather conventional method of infection and goes through an infected attachment or a drive-by download (automatic download after simply visiting a website).
But the peculiarity of Goznym lies more in its code, because the Trojan is actually a mixture of two malwares, Gozi and Nymaim – hence the name “Goznym” given by the researchers from IBM X-Force Research who are behind the discovery.