The attackers did reconnaissance on their targets, using social networks which people inside the organization was involved in making financial transactions. These victims were then called using the old-fashioned phone by the attacker posing as bank employees, who then used social engineering tactics to trick the victim to install an “update” to the bank’s security module.
The victims who complied, worried that they would lose access to their account, were installing a Chrome extension called Interface Online offered by Internet Security Online. The extension was available on Tuesday in the store and there were at least 30 downloads. As it was discovered, Google took it down. This scam was first discovered in Brasil, but expect this soon in the US and Europe.
Copyright 2017 NETWORKFIGHTS.COM