Visa warns of new JSOutProx malware variant targeting financial orgs

Visa is alerting users to an increase in JsOutProx malware detections, which is aimed at financial institutions and their clients.

Visa’s Payment Fraud Disruption (PDF) team sent a security alert to card issuers, processors, and acquirers on March 27, 2024, which BleepingComputer was able to view. According to the alert, Visa learned about a new phishing operation that was disseminating the remote access trojan on that day.

Financial institutions throughout Africa, the Middle East, and South and Southeast Asia were the target audience for this campaign.

JsOutProx is a highly obfuscated JavaScript backdoor and remote access trojan (RAT) that was first discovered in December 2019. Its operators can run shell commands, download more payloads, execute files, take screenshots, establish persistence on the infected device, and manipulate the keyboard and mouse read more Visa warns of new JSOutProx malware variant targeting financial orgs.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *