This Article was originally published on this site

A new spambot called Onliner has been discovered which can bypass spam filters and target 711 million email addresses, as noted by ZDNet. Onliner is used to send the banking malware Ursnif to vulnerable Windows computers. The trojan then steals passwords, credit card details, and other personal information by tricking a user into open an attachment on the email which causes the malware to download, infecting the computer. The emails can been seen disguised as invoices from government bodies, hotel reservation details, and DHL notifications.

The discovery was made when a security researcher known as Benkow uncovered an open web directory on a web server used by Onliner. Onliner takes advantage of credentials harvested from other security…

Continue reading…