Unlike the non-financial malware Ramnit which turned into a fraud platform, Shylock doesn’t incorporate tactics from the infamous Zeus Trojan.
It appears criminals have custom developed financial fraud capabilities for Shylock.
Shylock uses unique mechanisms not found in other financial malware toolkits, including:
- An improved method for injecting code into additional browser processes to take control of the victim’s computer
- A better evasion technique to prevent malware scanners from detecting its presence
- A sophisticated watchdog service that allows it to resist removal attempts and restore operations.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.