Sveriges mest populära poddar
CyberWire Daily
NyheterDagliga nyheter

Peeling back Banana RAT. [Research Saturday]

29 min20 juni 2026

This week, we are joined by Tom Kellermann, Trend Micro's VP of AI Security and Threat Research, discussing their work on "Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud." Researchers from Trend Micro's MDR team uncovered the full operation behind Banana RAT, a sophisticated banking trojan they track as SHADOW-WATER-063, by analyzing both attacker infrastructure and infected victim systems.

The malware uses fileless PowerShell execution, layered obfuscation, and remote-control capabilities to steal credentials, manipulate banking sessions, intercept Pix QR code payments, and facilitate financial fraud targeting Brazilian banks. The campaign appears to be operated by a Brazilian Portuguese-speaking cybercriminal group with ties to the broader Tetrade banking malware ecosystem and may be evolving toward a malware-as-a-service model.

The research and executive brief can be found here:

Learn more about your ad choices. Visit megaphone.fm/adchoices

Fler avsnitt av CyberWire Daily

Visa alla avsnitt av CyberWire Daily
Klue me in on the breach.
28 min
All eyes on AI.
25 min
The Klue is in the data trail.
30 min
Vulnerability response: Built for humans, outpaced by machines. [CyberWire-X]
25 min
Navigating the GPS threat landscape, with Brandon Karpf. [T-Minus: Space-Cyber Briefing]
32 min
CyberWire Daily at 10: A decade of leaks, espionage, and influence operations. [Special Edition]
26 min
The botnet browser blues.
25 min
The nominee in limbo.
32 min
No Mythos of escape.
32 min
The fable ends before it begins.
29 min

CyberWire Daily med N2K Networks finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.