At least 6 Austrian and 15 Swiss online banking sites are affected by an attack that experts at Trend Micro discovered and dubbed “Emmental” because it drills significant holes in their security measures. Users in Austria and Switzerland (and Sweden and Japan) are particularly at risk because some banks there rely on so-called two-factor authentication.
Customers log in to the bank website with their username and password and also enter a code that is sent to their cell phone via SMS.
Do you use such a procedure? Then you have to be careful now!
Browser is redirected
The “Emmental” attacks are technically complex and demonstrate a high level of criminal energy - someone really wants to cash in here. As is often the case, it all starts with a fake email, in many cases from a well-known online retailer. As soon as you click on the alleged order confirmation attached, the malware makes two dangerous changes to your computer:
- Whenever you visit the website of certain banks, you no longer get the real page, but a phishing page - even if you type in the address yourself!
- Fake SSL certificates are installed so that your browser can no longer warn you about insecure connections.
The username and password are then collected on the deceptively real phishing page. In addition, the user is “officially” asked to install an Android app for more security. In reality, the app forwards the SMS with the online banking code. This means the attackers have all the data together and can empty the account.
Now plug the holes
Trend Micro has already informed the affected banks so that they can take action before imitators jump on the trick. That's why the names of the banks cannot be mentioned here.
But you can also protect yourself:
- Do not open email attachments that you did not request yourself.
- Do not install Android apps that are forced on you, no matter who.
- Use a different method for online banking. Ask your bank which authentication procedures they offer you
Also applies!
Anyone who still does online banking without an up-to-date security solution is acting extremely carelessly. Software like Titanium Internet Security is very good at identifying phishing emails and websites early on.
This is very difficult for normal users today because the attackers' tricks are becoming more and more sophisticated. You can find further tips on online banking and online shopping in this short eGuide .
Those interested in technology of “Emmental” here
Notes:
1) This content reflects the current state of affairs at the time of publication. The reproduction of individual images, screenshots, embeds or video sequences serves to discuss the topic. 2) Individual contributions were created through the use of machine assistance and were carefully checked by the Mimikama editorial team before publication. ( Reason )