MalwareBleeping Computer
8.0 — CRITICAL
New TCLBanker malware self-spreads over WhatsApp and Outlook
A new trojan named TCLBanker, which targets 59 banking, fintech, and cryptocurrency platforms, uses a trojanized MSI installer for Logitech AI Prompt Builder to infect systems. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
TCLBanker is a new banking trojan that uses self-spreading worm modules for WhatsApp and Outlook, targeting 59 banking, fintech, and cryptocurrency platforms in Brazil and potentially expanding its scope.
⚙️Technical Details
Affected Systems
Logitech AI Prompt BuilderWhatsAppOutlook
Attack Vectors
DLL side-loadingWindows UI Automation APIsCOM automation
💥Impact Assessment
Severity: high
Who Is at Risk
59 banking, fintech, and cryptocurrency platforms in Brazil and potentially other LATAM countries
🛡️Recommended Actions
1Implement security updates for Logitech AI Prompt Builder and other affected software
2Monitor WhatsApp and Outlook accounts for suspicious activity
3Use antivirus software to detect and block DLL side-loaded malware
📦Affected Products
Logitech AI Prompt BuilderWhatsAppOutlook
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.