SpyEye has been seen with a feature designed to keep victims in the dark long after fraud has taken place. The next time users log into their bank accounts, SpyEye will check its records to see what fraudulent transactions were made with the account. SpyEye is notable for its ability to inject new fields into a Web page, a technique called HTML injection. It can also use HTML injection to hide fraudulent transfers of money out of an account by displaying an inaccurate bank balance. The latest feature is designed with the same goal of keeping users unaware of fraud.”]
Source: https://www.csoonline.com/article/2130552/spyeye-malware-borrows-zeus-trick-to-mask-fraud.html