Name of Malware: Gozi2

Type of Malware: Banking Trojan

Affected Operating Systems: Windows

Affected Device Types: PCs, laptops

Impact: high

What is Gozi2?

Gozi2 is a banking trojan.

Banking trojans intercept communication with your bank to access your PINs and TANs. They can therefore cause significant financial damage. Gozi2 can also capture additional access data, such as the password for your e-mail account.

How did I get infected with Gozi2?

One potential route of infection is via another piece of malware - a malware downloader - that was already on your system. Andromeda/Gamarue and Matsnu are examples of malware downloaders.

What do I have to do now?

Do not carry out any further sensitive transactions on your computer. There may be other malware on your system besides Gozi2. Use anti-virus software to perform a full scan of your system. If you still have concerns about whether the infection has been effectively removed, you should reset the device and reinstall the operating system. Back up your personal data before wiping the system. Once your system has been reset, change all your passwords, as the perpetrators may have been able to access them. If you use Online banking, contact your bank so that they can implement the appropriate security safeguards.