A hybrid Trojan program created for financial fraud has started redirecting users of four large U.S. banks to rogue websites. GozNym is a relatively new threat, first discovered in April, and is based on the Nymaim malware dropper and the Gozi banking Trojan. The Trojan uses some technical tricks locally to keep the bank’s real URL in the address bar and even the SSL certificate. Once users input their credentials into the fake website, the credentials are tested in real-time against the real site.”]