A banking trojan known as Mispadu has been found to be linked to multiple spam campaigns targeting countries like Mexico, Portugal, and Peru, among others. The trojan was first documented in November 2019 and is known to target monetary and credential theft. It has also been found to act as a backdoor, taking screenshots and capturing keystrokes. The Mispadu trojan utilizes compromised legitimate websites, turning them into command-and-control servers to spread malware, while filtering out countries that it does not want to infect. Researchers have noted that Mispadu has similarities with other banking trojans like Grandoreiro, Javali, and Lampion. The trojan has the ability to gather a list of antivirus solutions installed on the host, as well as steal credentials from Google Chrome and Microsoft Outlook. The malware utilizes malicious overlay screens to obtain sensitive information associated with online banking portals. The Mispadu trojan has bypassed detection by security software, resulting in over 90,000 bank account credentials being harvested from over 17,500 unique websites.
Source: The Hacker News
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website.