According to
this article yesterday on Computerworld a sophisticated crew of German speaking hackers have conducted a data mining exercise with a difference.
They've trolled through the account details generated by a generic widespread trojan to identify corporate and offshore bank accounts, and have then targeted individual banks and corporate customers with sophisticated phishing emails and customised trojans
that mimic human behaviour on each particular bank site to avoid detection by anti-fraud software once they've taken over the account.
As a result, around 20 banks in US, UK, Spain and Italy have been hit for more than $200,000.
As always, the interviewed security expert's recommendation is to never trust an email from your bank or take action without checking first. But if customers fail to take this low-tech measure, it seems that the hackers (perhaps with inside knowledge of
how online banking systems and anti-fraud software tends to work) are becoming sophisticated enough to get around any other high-tech measures that a bank might put in place.