Banking Trojan Abuses Pinterest in C&C Routines

Last summer Trend Micro observed online banking Trojans that were targeting South Korean banks. Now, compromised sites that contain exploit kits are delivering banking Trojans to site visitors. Some of the banks being targeted include Hana Bank, Nonghyup Bank, the Industrial Bank of Korea (IBK), Shinhan Bank, Woori Bank, Kookmin Bank, and the Consumer Finance Service Center. Once a customer has been infected with malware and is redirected to a phishing site that looks like a legitimate banking website, the criminals are able to steal their credentials.

One interesting characteristic of this particular Trojan is that it is using Pinterest as its command-and-control server to redirect users to various spoofed banking sites,

Read more about the banking trojan which targets South Korean banks using Pinterest as its spreading medium on Cyveillance Blog.