Grandoreiro Banking Trojan Resurfaces with Lighter, Targeted Attacks on Mexican Banks
In early 2024, despite the arrest of key operators, the Grandoreiro banking trojan continues to be active. Kaspersky’s Global Research and Analysis Team (GReAT) has discovered a new, lighter variant targeting approximately 30 banks in Mexico, one of the most impacted regions, with 51,000 incidents recorded this year.
Grandoreiro variants are responsible for around five percent of global banking trojan attacks in 2024, remaining one of the most prevalent threats worldwide.
Grandoreiro
The trojan’s operators adapted by fragmenting its codebase, enabling new campaigns through simplified versions.
These new strains feature advanced tactics, such as recording and mimicking user mouse movements to bypass machine-learning-based anti-fraud systems by emulating real user behavior.
These findings will be discussed at Kaspersky’s Security Analyst Summit (SAS) 2024.
Read more Business News