Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation Qbot Targets Financial Institutions

The Qbot banking trojan has been in operation for more than a decade and continues to target entities worldwide. The malware has been referenced by many names including Akbot, Qakbot, and Pinkslipbot but still focuses on exfiltrating sensitive information including browser information, financial data, and credentials. A new variant of the malicious software was discovered in 2020 performing new techniques including injecting the malware into explorer.exe and creating a registry run key to survive reboots. The latest variant is focused on financial institutions in the United States, Canada, and the Netherlands.
Name Modified Date Sources
Operation Qbot Targets Financial Institutions 2020-06-19