Search This Blog

Powered by Blogger.

Blog Archive

Labels

Top-Ranking Banking Trojan Ramnit Stealing Payment Card Data

Ramnit carries out simple yet effective operations on infected devices, said researchers.

 


Online Shopping has become increasingly popular these days, and it has accelerated since the COVID-19 pandemic the trend eventually exacerbated the cybersecurity threat. Online shopping has undeniable advantages, but still, it makes negative headlines every day. 

According to the sources, online sales increased 9% during the 2021 holiday season to a record $204.5 billion. Mastercard said that the shopping rose up to 8.5% this year compared to 2020 and 61.4% compared to pre-pandemic levels. 

IBM X-Force researchers said that the threat actors are not missing pandemic trends opportunities primarily the Ramnit Trojan. Recently a study has discovered that the Ramnit Trojan is brutally taking over people’s online accounts and stealing their payment card data. 

The Ramnit malware has targeted a long list of popular brands and online retailers such as travel and lodging platforms. The IBM X-Force researchers further said that they have noticed a diverse collection of Ramnit configuration files over the years. Not only was Ramnit at the top of the list of active banking Trojan in 2021, but the malware has also been a cybercrime tool for over a decade. 

The group continues to victimize the people and service providers, primarily, when it is the holiday season. Once it makes its way to an infected device, it monitors browsing to target websites and goes into information stealing mode. It typically steals login data, but its web injections can also trick users into providing payment card credentials or other sensitive information. 

Between 2011 and 2014, the Ramnit Trojan gained momentum in the cybercrime arena, ranking in the top 10 list of the most prevalent financial Trojan. The malware is active since 2010. Ramnit is designed to leverage removable drives and network shares, user credentials, and deploys in session web injections. This malware infection was rampant in North America, Europe, and Australia.
Share it:

Data Breach

Financial Data Breach

Online data Theft

Ramnit Trojan