Kaspersky Lab spotted a new attack campaign involving the Ginp banking trojan. Upon receiving a special command, Ginp redirected users to a web page advertising a program called the “Coronavirus Finder.” The website claimed that users could reveal the number of people infected with COVID-19 near them in exchange for a small fee.
Not surprisingly, the program is fake. It was simply a trick to convince visitors to submit their Credit Card info. They didn’t even charge the small fee advertised on the web page! Why? Probably because they were thinking of other ways they could abuse the victim’s credit card data on a larger scale.