ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

Ousaban banking trojan spoofs PDFs to steal Spain and Portugal bank credentials

Source headline: Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

A Brazilian banking trojan named Ousaban is targeting Windows users who bank in Spain and Portugal. The campaign begins with a phishing document disguised as a corrupted PDF. It verifies the victim’s location and then conceals the real malicious payload inside an image. The goal is to capture banking logins and related credentials. Users should avoid opening unexpected attachments, especially PDF “corruption” lures, and ensure email and endpoint protections are up to date.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#banking-trojan #credential-theft #phishing #ousaban #pdf-lures
Original reporting The Hacker News Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
Open original source