The banking malware GozNym has spread into Europe and begun plaguing banking customers in Poland with redirection attacks, IBM said. Attackers dupe users by showing them the actual bank s URL and SSL certificate. The malware has redirection instructions for 17 banks and features an additional 230 URLs to assist attackers in targeting community banks and email service providers in Poland. The technique is similar to one used by the Dridex Trojan earlier this year, which targeted U.K. users in January.
Source: https://threatpost.com/attackers-behind-goznym-trojan-set-sights-on-europe/117647/