Below is a media alert from Etay Maor, Fraud Prevention Solutions Manager, Trusteer, on how a new Citadel malware variant is targeting customers using the Payza payment platform. This is a Man in the Browser attack which alters the login screen presented to the customer and adds the “pin” field and then sends the customers email, passcode and pin number to the criminals. The Payza transaction pin is used every time a user wants to send, add or withdraw funds, so by obtaining the customers pin number, a cybercriminal can take over their account. Please see media alert and screen shots below for more information.
- Etay Maor, Fraud Prevention Solutions Manager, Trusteer
- Viewpoints
- Posted On