Tatanga Trojan
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 90 % (High) |
| Infected Computers: | 2 |
| First Seen: | May 17, 2012 |
| Last Seen: | July 20, 2022 |
| OS(es) Affected: | Windows |
The Tatanga Trojan is a malware infection that is designed to scam computer users by stealing money from their bank account. To do this, the Tatanga Trojan is designed to trick computer users into giving up essential information that allows the criminals behind the Tatanga Trojan to create money transfers out of the victim's bank account. Ironically, this is done in the name of supposedly providing the computer user with insurance in order to protect them from Internet banking fraud! Because of this, ESG security researchers cannot stress enough the importance of never acquiring these kinds of services from unsolicited email messages, pop-up windows, or online advertisements; even if they appear to come from a trusted source or are contained in what should be a reliable website. The Tatanga Trojan embeds this scam within regular web pages by altering how your web browser displays a particular web page.
The Tatanga Trojan Sells You Fake Insurance in Order to Steal Your Money
The Tatanga Trojan will hijack the victim's web browser in order to display advertisements offering a service to protect computer users from credit card fraud. Supposedly, this is a free service. The Tatanga Trojan will convince the victim by establishing a bogus insurance account with the same value as the balance in the victim's online bank account. However, this is simply a ploy to obtain the victim's banking information. Because of this, ESG security analysts strongly recommend treating with caution any messages similar to the ones described for this online scam.
How the Tatanga Trojan Steals Its Victims' Money
Once the victim is made to believe that they have acquired an insurance policy that will protect them from online credit card fraud, the criminals behind the Tatanga Trojan will ask for the victim's authorization for the transaction in order to 'activate' the supposed insurance policy. To do this, the criminals will ask the victims to provide their transaction affirmation number via cell phone. Needless to say, once the scammers have access to this number they can execute a transfer from the victim's bank account, cleaning out their bank account and stealing the victim's money. The Tatanga Trojan targets Spanish speakers located in Spain. If the bank account has up to 6500 Euros, the Tatanga Trojan scam will steal the entirety of the victim's account. Accounts with a higher balance will be depleted of 5000 Euros.
