18 August 2017
visit www.avoka.com

Brazilian malware kingpin outed as 20-year-old student

03 July 2015  |  5737 views  |  0 Computer virus

A notorious cybercrook responsible for more than 100 online banking Trojans has been outed by security firm Trend Micro as a 20-year-old Brazilian computer science student.

Known online as Lordfenix, the student has been developing and selling banking Trojans since 2013, says Trend Micro, which has dug up old forum posts in which he asked for programming help.

Lordfenix has also been spotted offering free versions of fully-functional banking Trojan source code to underground forum members. However, the code can be used to steal login details from customers of four banks and 'clients' have to pay for a more powerful tool called TSPY_BANKER.NJH.

TSPY_BANKER.NJH is able to identify when a user types any of its target banks’ URLs, close the browser window (if it’s running on Google Chrome), display an error message, and then open a new fake Chrome window. If the victim then enters their login details in the fake window, the information is emailed back to an address linked to Lordfenix.

The student is also advertising malware through his Skype profile and is selling each Trojan for around $320, says Trend Micro.

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

MalumPoS malware targets Oracle Micros platform

MalumPoS malware targets Oracle Micros platform

10 June 2015  |  7690 views  |  0 comments | 4 tweets | 1 linkedin
Russian cops nab alleged Nazi Android malware gang members

Russian cops nab alleged Nazi Android malware gang members

13 April 2015  |  4050 views  |  0 comments | 4 tweets | 6 linkedin
Europol shuts down banking botnet: US puts up $3 million reward for Russian cyber fugitive

Europol shuts down banking botnet: US puts up $3 million reward for Russian cyber fugitive

25 February 2015  |  5201 views  |  0 comments | 7 tweets | 5 linkedin
11% of Android banking apps 'suspicious' - RiskIQ

11% of Android banking apps 'suspicious' - RiskIQ

22 January 2015  |  7452 views  |  0 comments | 23 tweets | 14 linkedin
Brazilian scammers score $3.75 billion in malware bank fraud

Brazilian scammers score $3.75 billion in malware bank fraud

03 July 2014  |  8305 views  |  3 comments | 10 tweets | 18 linkedin

Related blogs

Create a blog about this story (membership required)
download the paper nowvisit www.niceactimize.comvisit www.dorsum.eu

Who is commenting?

Top topics

Most viewed Most shared
China preps central clearing house for mobile payments providersChina preps central clearing house for mob...
10089 views comments | 8 tweets | 16 linkedin
Monzo appoints Curve co-founder Foster-Carter COOMonzo appoints Curve co-founder Foster-Car...
8372 views comments | 1 tweets | 3 linkedin
hands typing furiouslyCompliance: Overcome the data deficit
7814 views 0 | 1 tweets | 9 linkedin
PayPal buys Swift Financial to boost working capital bizPayPal buys Swift Financial to boost worki...
7761 views comments | 13 tweets | 7 linkedin
Uneasy sits the crown as cash use continues declineUneasy sits the crown as cash use continue...
7728 views comments | 3 tweets | 7 linkedin

Featured job

Competitive
New York, NY - USA (some flexibility on location)

Find your next job