19 October 2017

Brazilian malware kingpin outed as 20-year-old student

03 July 2015  |  5863 views  |  0 Computer virus

A notorious cybercrook responsible for more than 100 online banking Trojans has been outed by security firm Trend Micro as a 20-year-old Brazilian computer science student.

Known online as Lordfenix, the student has been developing and selling banking Trojans since 2013, says Trend Micro, which has dug up old forum posts in which he asked for programming help.

Lordfenix has also been spotted offering free versions of fully-functional banking Trojan source code to underground forum members. However, the code can be used to steal login details from customers of four banks and 'clients' have to pay for a more powerful tool called TSPY_BANKER.NJH.

TSPY_BANKER.NJH is able to identify when a user types any of its target banks’ URLs, close the browser window (if it’s running on Google Chrome), display an error message, and then open a new fake Chrome window. If the victim then enters their login details in the fake window, the information is emailed back to an address linked to Lordfenix.

The student is also advertising malware through his Skype profile and is selling each Trojan for around $320, says Trend Micro.

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

MalumPoS malware targets Oracle Micros platform

MalumPoS malware targets Oracle Micros platform

10 June 2015  |  7791 views  |  0 comments | 4 tweets | 1 linkedin
Russian cops nab alleged Nazi Android malware gang members

Russian cops nab alleged Nazi Android malware gang members

13 April 2015  |  4111 views  |  0 comments | 4 tweets | 6 linkedin
Europol shuts down banking botnet: US puts up $3 million reward for Russian cyber fugitive

Europol shuts down banking botnet: US puts up $3 million reward for Russian cyber fugitive

25 February 2015  |  5272 views  |  0 comments | 7 tweets | 5 linkedin
11% of Android banking apps 'suspicious' - RiskIQ

11% of Android banking apps 'suspicious' - RiskIQ

22 January 2015  |  7534 views  |  0 comments | 23 tweets | 14 linkedin
Brazilian scammers score $3.75 billion in malware bank fraud

Brazilian scammers score $3.75 billion in malware bank fraud

03 July 2014  |  8383 views  |  3 comments | 10 tweets | 18 linkedin

Related blogs

Create a blog about this story (membership required)
Register nowvisit www.niceactimize.com

Top topics

Most viewed Most shared
Ripple looks to drive bank adoption with $300m XRP rebate programmeRipple looks to drive bank adoption with $...
15758 views comments | 12 tweets | 4 linkedin
Swift positive on blockchain, but big challenges remainSwift positive on blockchain, but big chal...
8924 views comments | 16 tweets | 22 linkedin
satelliteGates Foundation backs Ripple collaboratio...
8013 views comments | 13 tweets | 10 linkedin
IBM uses blockchain to improve cross-border payments processingIBM uses blockchain to improve cross-borde...
7117 views comments | 9 tweets | 17 linkedin
Santander InnoVentures leads $6m funding round for Mexico's ePesosSantander InnoVentures leads $6m funding r...
6267 views comments | 6 tweets | 3 linkedin

Featured job

Find your next job