In 2019, 773,943 users of Kaspersky solutions were attacked by banking Trojans. Of those users, a third (35.1%) were in the corporate sector. Middle Eastern corporate sector was affected too, with Egypt being the most targeted country and the highest in terms of the share of affected corporate users attacked by banking malware – 43%. This is among the findings from Kaspersky's analysis of the financial threat landscape.
Banking Trojans or ‘bankers’ are one of the most widespread tools for cybercriminals as they focus on stealing money. Bankers usually search for users’ credentials for e-payment and online banking systems, hijacking one-time passwords, and then passing that data to the attackers.
A third of these attacks in 2019 targeted corporate users, an increase from the figure (24% - 25%) that has remained fairly consistent for the previous three years. According to experts, the rationale of this is clear: attacks on the B2B sector could not only provide access to banking or payment system accounts, but, through employee exposure, could also compromise a company’s financial resources.
The collected data also shows that Egypt held its position as the most targeted nation in Middle East in 2019, accounting for 43% corporate of users out of all attacked by banking malware. It is followed by Bahrain (41%), United Arab Emirates (with 37%), Qatar (35%), Kuwait (34%) and Saudi Arabia (30%).
“While the overall number of attacks with bankers decreased in 2019, the growing interest for corporate users’ credentials indicates we are not yet seeing respite from financial threats. We therefore ask everyone to stay cautious when conducting financial operations online from PCs. While we are in the current peak of remote working during the coronavirus pandemic, it is especially important to not underestimate criminals’ desire for stealing money,” said Oleg Kupreev, security expert at Kaspersky.
The key findings of the report are:
Banking malware (Windows):
Android banking malware:
Threats targeting businesses, such as banking Trojans and financial phishing, can and should be detected and blocked on a network level - even before they reach employee’s endpoints. In particular, the use of a secure internet gateway solution like Kaspersky Security for Internet Gateway, ensures secure internet traffic and transactions and prevents many types of malware and threats. Kaspersky solution has received positive honest customer feedback and been named a 2020 ‘Customers’ Choice for Secure Web Gateways’.
In addition to this, Kaspersky experts advise businesses take the following measures against financial threats: