Operation Qbot Targets Financial Institutions
The Qbot banking trojan has been in operation for more than a decade and continues to target entities worldwide. The malware has been referenced by many names including Akbot, Qakbot, and Pinkslipbot but still focuses on exfiltrating sensitive information including browser information, financial data, and credentials. A new variant of the malicious software was discovered in 2020 performing new techniques including injecting the malware into explorer.exe and creating a registry run key to survive reboots. The latest variant is focused on financial institutions in the United States, Canada, and the Netherlands.