The Shifu banking Trojan is spreading to the UK targeting banks and wealth management firms. The malicious code has been used to target the customers of more than a dozen Japanese banks. The threat actor behind the campaign is using a variant of the Angler EK which is offered for sale in the underground since 2013. The infection process relies on compromised websites hosting the popular Angler exploit kit meanwhile the attack vector are spam emails. The malware relies on a few tried-and-true Trojan mechanisms from other infamous crimeware codes.”]
Source: http://securityaffairs.co/wordpress/40554/cyber-crime/shifu-trojan-uk.html