Click to Skip Ad
Closing in...
  1. MyQ Smart Garage Door Opener
    11:06 Deals

    Unreal Prime Day deal gets you a MyQ smart garage opener and a $40 Amazon credit for $17

  2. MyQ Smart Garage Door Opener
    08:37 Deals

    Oops! Prime Day’s best-selling smart home gadget is still down to $17

  3. Best Amazon Deals Today
    08:02 Deals

    Prime Day is over, but these 10 exclusive deals are for Prime members only

  4. Amazon Dash Smart Shelf
    15:16 Deals

    I’m obsessed with this Amazon gadget you’ve never heard of – and it&#821…

  5. Roomba Prime Day Deals
    21:34 Deals

    Robot vacuums start at $90 for Prime Day, or get a Roomba for $200

Beware: This dangerous malware steals your bank account info and lets hackers rob you

May 20th, 2021 at 4:03 PM
Bizarro Trojan Malware

Internet banking is one of the key activities that hackers target on computers and smartphones. Security has increased dramatically in the past few years to minimize the risks for consumers, but the users themselves are still the weakest link in the system. Inadvertently installing a malware app is enough for hackers to attempt attacks on your digital belongings, whether it’s personal data or cash.

Bizarro is the name of a banking trojan that has been wreaking havoc in Brazil, and the hackers behind the project are widening their scope by targeting other regions. The sophisticated trojan has been discovered in Europe and parts of South America. Its purpose is very simple, to steal money from unsuspecting victims, whether it’s digital coins like bitcoin or more traditional currency from their bank accounts.

Today's Top Deal Amazon forgot to end this #1 best-selling Prime Day deal — now just $17! List Price:$29.98 Price:$16.98 You Save:$13.48 (45%) Available from Amazon, BGR may receive a commission Buy Now Available from Amazon BGR may receive a commission

Bizarro is incredibly sophisticated, Kaspersky Labs explained in a new report, via Gizmodo.

The program is distributed via MSI downloads tied to spam messages, which then trigger a ZIP download from a compromised website that matches the target’s processor architecture. Once installed, the program obfuscates its code to avoid detection and starts monitoring activities on the computer, hunting for cryptocurrency transfers and online banking sessions.

The trojan has a few surprising functions that make it very dangerous. When Bizarro starts, it will terminate all browser processes to kill online banking sessions. That way, when a user restarts the browser, they will be forced to re-enter banking credentials to log in again. It also disables autocomplete in the browser, so the user has to type the login credentials manually.

Bizzaro also captures the contents of each screen and monitors the clipboard. When a bitcoin wallet is accessed, the trojan replaces it with one belonging to the hackers. The program supports more than 100 commands that allow the attackers to steal banking data, control the computer, log keystrokes, and even display fake pop-up messages to delay and confuse the user.

The attack will detect when a user starts an internet banking session, at which point it will initiate a procedure meant to buy the hackers time to steal money from the victim’s account. This is done with the help of a series of pop-up messages that look like genuine messages sent from the bank to inform the user of a security update. While these pop-ups appear on the screen, the computer is frozen so that the victim can’t return to other apps, including the online banking session. At the same time, the hackers access the victim’s account using the information taken from the target computer.

The pop-up messages also try to convince victims to input two-factor authentication codes while blocking access to the computer. That way, the hackers can authorize logins and money transfers from the unsuspecting victim’s account. Some of the pop-ups even inform targets that they might see unfamiliar transactions in their banking sessions, but they’re all part of a security update. Some pop-ups will tell them that a computer restart is required. It’s all meant to prevent the user from interacting with their bank while they’re being robbed.

Bizarro even tries to lure the victims into installing a different malicious app on their smartphones.

The security researchers say Bizarro is spreading in various countries, including Brazil, Argentina, Chile, Germany, Spain, Portugal, France, and Italy. It’s just one of many trojans from South America that are currently expanding to other regions — the full report on Bizarro is available at this link.

Today's Top Deal The newest Nest Thermostat is down to its lowest price ever at Amazon! List Price:$129.99 Price:$99.98 You Save:$30.01 (23%) Available from Amazon, BGR may receive a commission Buy Now Available from Amazon BGR may receive a commission

Chris Smith started writing about gadgets as a hobby, and before he knew it he was sharing his views on tech stuff with readers around the world. Whenever he's not writing about gadgets he miserably fails to stay away from them, although he desperately tries. But that's not necessarily a bad thing.

Popular News