Carbanak is an APT-style campaign targeting (but not limited to) financial institutions,[1] that was discovered in 2014[2] by the Russian cyber security company Kaspersky Lab.
[3] It utilizes malware that is introduced into systems running Microsoft Windows[4] using phishing emails,[3][5] which is then used to steal money from banks via macros in documents.
[citation needed] Kaspersky Lab is helping to assist in investigations and countermeasures that disrupt malware operations and cybercriminal activity.
During the investigations they provide technical expertise such as analyzing infection vectors, malicious programs, supported command and control infrastructure and exploitation methods.
[14] The Anunak report shows also a greatly reduced amount of financial losses and according to a statement issued by Fox-IT after the release of The New York Times article, the compromise of banks outside Russia did not match their research.