Do you ever wonder if cybercrime is as serious as people like us make it sound? If so, remember this name: GozNym.
We recently told you that hackers used a new hybrid of the malwares Gozi and Nymaim to steal $4 million right out of innocent people's bank accounts and credit union accounts. In total, 46 banks and other companies in the United States and Canada were attacked. Worse, it took the cybercriminals only three days to steal all that money.
In a similar case last year, hackers using the Dridex malware stole $30 million. (More on Dridex in a second.)
Now, we're hearing from cybersecurity experts that the GozNym attack is quickly spreading around the world, including hitting nearly two dozen European banks. And it's going from bad to worse.
The attack starts with a phishing email, where hackers send you an email that looks like it's coming from your bank or credit union. Inside the body of the email is an attachment.
If you open that attachment (never do that), they request your banking information. Now, cybersecurity experts say the GozNym hackers are redirecting users to non-bank websites, so the attack never even touches the banks' sites. The problem is, the banks don't know their customers are being victimized.
That type of redirection attack was used by the Dridex hackers. Cybersecurity experts believe the Dridex hackers are also behind the GozNym crimes.