ESET dissects malware stealing financial data

Evilnum’s main targets are financial technology companies

ESET dissects malware stealing financial data. Source: pixabay.com

According to ESET, Evilnum, an advanced threat group, has been targeting European fintechs since 2018. The EU and the UK have been hit the hardest, although Australia and Canada have also seen the attacks.

Evilnum’s main goal is to spy on its targets and obtain financial data from both the targeted companies and their customers.

While this malware has been seen in the wild since at least 2018 and documented previously, little has been published about the group behind it and how it operates. Its toolset and infrastructure have evolved and now consist of a mix of custom, homemade malware combined with tools purchased from Golden Chickens, a Malware-as-a-Service provider whose infamous customers include FIN6 and Cobalt Group

Matias Porolli, the ESET researcher leading the investigation into Evilnum

Evilnum steals customer credit card information, proof of address, and ID data. The group access to spreadsheets and documents with customer lists, investments, and trading operations.

Besides, it steals software licenses and credentials for trading software and platforms. The group has also gained access to IT-related information, such as VPN configurations.

We’ve reported that European organizations have a false sense of security when it comes to protecting themselves. In fact, 68% are seeing themselves as vulnerable, compared to 86% in 2018.

SEE ALSO:

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

ESET dissects malware stealing financial data

Pay Space

Breaking News

Rippling Announces New Fundraising

Alphabet’s Cash Boom Stimulates Dividend Hopes on Wall Street

Trendy Fashion Retailer Express Files for Bankruptcy

TikTok Says About Potential Consequences of Banning Platform in US

China’s Q1 Fiscal Revenue Demonstrates Decline

Join Us

Newsletter

ESET dissects malware stealing financial data

Pay Space

Related Posts

Breaking News

Join Us

Newsletter

Get Updates