ShellCodeX Intelligence Brief
HIGH
Cybersecurity
Ousaban banking trojan spoofs PDFs to steal Spain and Portugal bank credentials
Source headline: Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
Threat level
High
Signal strength
75/100
Source confidence
1 source
Published
2 hours ago
Intelligence Summary
A Brazilian banking trojan named Ousaban is targeting Windows users who bank in Spain and Portugal. The campaign begins with a phishing document disguised as a corrupted PDF. It verifies the victim’s location and then conceals the real malicious payload inside an image. The goal is to capture banking logins and related credentials. Users should avoid opening unexpected attachments, especially PDF “corruption” lures, and ensure email and endpoint protections are up to date.
Recommended Action
Review affected assets, schedule urgent remediation, and monitor related indicators.
Topics
Original reporting
The Hacker News
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
Open original source