Security researchers have spotted a surge in attacks against online banking customers, thanks to a new strain of Java-exploiting Trojan Caphaw (aka Shylock).
Over the last month or so the malware has targeted customers in at least 24 financial institutions, including Bank of Scotland, Barclays Bank, First Direct, Santander Direkt Bank AG and Capital One Financial Corporation, according to security researchers at cloud security firm Zscaler. There’s no word on whether or how successful its attacks have been and which bank’s customers have been affected. Caphaw (Shylock) is most active in the UK, Italy, Denmark and Turkey.
“We have detected hundreds of infections, but there is no way to calculate the losses,” Zscaler researcher Chris Mannon told El Reg.