Proofpoint security researchers have discovered a new version of Kronos, with exploit campaigns already active in Germany, Japan and Poland
Kronos gained more than a little infamy when British security researcher Marcus Hutchins, who found the kill switch that stopped the WannaCry ransomware attack in its tracks last year, was arrested in the United States on suspicion of being the author of the banking Trojan. This new variant, which is being sold through cyber-crime channels under the name of Osiris, adds Tor network support in order to anonymise the C&CC mechanisms employed during exploits. But why are Trojans such as Kronos so successful? Why are banking Trojans still even a thing in 2018?