JS/Banker.BA
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 90 % (High) |
| Infected Computers: | 63 |
| First Seen: | August 14, 2015 |
| Last Seen: | October 5, 2022 |
| OS(es) Affected: | Windows |
JS/Banker.BA is a Javascript Trojan infection that is used to gather banking credentials and other online banking data. However, real JS/Banker.BA infections are very rare, almost nonexistent. In most cases, JS/Banker.BA detections are false positives that indicate a problem with your security software, with the banking website, or due to the presence of another threat on your computer that may be causing your security program to display a JS/Banker.BA warning. If your security software is displaying a JS/Banker.BA warning repeatedly when you try to log into your online banking account, you should refrain from logging into your account and instead take steps to confirm the source of the problem. Since a true JS/Banker.BA infection does represent a real threat to your banking credentials, PC security researchers strongly advise taking precautionary steps and ensuring that your computer is fully protected from JS/Banker.BA with a reputable security application that is fully up-to-date.
What is the Meaning of JS/Banker.BA Warnings
Most computer users that have reported problems involving JS/Banker.BA have reported that their security software displays pop-up JS/Banker.BA warnings whenever they try to log into their online bank account. According to these reports, JS/Banker.BA warnings tend to occur on Google Chrome exclusively (meaning that JS/Banker.BA warnings involving other Web browsers most likely involve a real JS/Banker.BA infection rather than a false positive). In some cases, JS/Banker.BA was previously classified as a threat but later revealed to be a false positive. When dealing with these kinds of issues, there is always the threat of ignoring the JS/Banker.BA warning, considering it a false positive, and then compromising your information. Because of this, malware analysts always recommend erring on the side of caution and giving preference to the interpretation that there is a threat until the presence of a false positive is proven.
Possible Reasons for a JS/Banker.BA Warning
If your security software is displaying JS/Banker.BA warnings whenever you try to connect to a website, there are several possibilities, which PC security researchers have listed below:
- A real JS/Banker.BA infection may be present on your computer. If this is the case, then PC security researchers recommend the use of a reliable security program that is fully up-to- date to remove JS/Banker.BA. Until the removal of JS/Banker.BA is confirmed, malware researchers advise computer users against trying to connect to their online banking account, in order to ensure that the computer user's online banking credentials are not leaked.
- There may be a problem with your banking website. Malware analysts recommend reading any information on your banking website and contact your banks technical support or customer service. One step that may help is connecting to your bank's website using a different Web browser.
- If the problem is with your security software, PC security analysts strongly advise downloading any updates and patches available for your security program. Most security programs that were presenting JS/Banker.BA false positives have been updated and should stop displaying these kinds of issues.
- In some cases, the problem may be a different threat on your computer (often a PUP (Potentially Unwanted Program) that is interfering with your Web browser and causing your security software to believe that the banking website is being hijacked by JS/Banker.BA. This may happen because security programs are designed to deal with threats but may not be as functional when dealing with low-level threats. However, these types of low-level threats may cause symptoms and problems that are commonly associated with threats, causing your security software to mistake them for a full-fledged infection. PC security researchers recommend the use of a reliable security application that is fully up-to-date to remove these types of low-level threats and reduce the number of JS/Banker.BA false positives.
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.