GEC NEWS WIREDiscovery made by Security Operation Center late last year and attacks can put millions of dollars at risk
F5 Networks has became the first company to publish a report on the Tinbapore malware, which was discovered by the company’s Security Operations Center (SOC) late last year.
“Detected by F5 WebSafe security solutions late last year, Tinbapore attacks have put millions of US dollars at risk,” said IIan Meller, Security Operations Manager, F5 Networks.
“Its main functionality is hooking all the browsers on the infected machine so it can intercept HTTP requests and perform web injections.”
F5 Security experts’ investigation revealed that Tinbapore is actually a new variant of the old Tinba Malware that so far was targeting financial institutions in the Europe, Middle East, and Africa (EMEA) region and the Americas.
This new variant of Tinba, Tinbapore now creates its own instance of explorer.exe that runs in the background. It differs from most previous versions in that it actively targets financial entities in the Asian Pacific (APAC), which was previously uncharted territory for Tinba. “Through our SOCs, F5 constantly monitors the fraud threat landscape, analyzing risks and trends that threaten online financial institutions,” added Meller.
