Posted By: ITWiser Webmaster - Yorkshire's IT Specialists
Posted By: IT Wiser
New Powerful Banking Trojan Emerges to Steal Your Data
Another day, another Trojan – do cybercriminals ever take a day off from trying to steal our personal data? The latest piece of malware spotted in the wild is being called ‘Dyreza’ or ‘Dyre’ and is a banking malware with similarities to the infamous Zues, although experts believe it to be from a new banker Trojan family
Identified by Danish company CSIS, the Trojan uses browser hooking to steal data from Chrome, Firefox, and Internet Explorer users, reported The Register.
Employing the age-old tactic of phishing emails (why fix something that’s not broken, right?), Dyre sends emails to unsuspecting victims containing a zipped document that contains the malware.
Having identified command and control servers and viewed associated accountants, CSIS believes that the malware’s code suggests further attacks could be unleashed using Flash Player updates as the phishing bait.
Once a computer has been compromised, Dyre can get to work, using browser hooking to view unencrypted web traffic and perform an interception when a user attempts to make a secure SSL connection with a website.
According to researchers at PhishMe, another security firm studying the malware, Dyre lets users think they are accessing their own legitimate online banking website, but instead redirects them to rogue servers, leaving the user unaware that a secure SSL connection has not been made. Banks currently being targeted by the Trojan include NatWest, RBS, Bank of America, Citibank, and Ulsterbank, CSIS revealed.
CSIS has viewed money mule accounts in Riga, Latvia, which indicate that cybercriminals pushing Dyreza already have the infrastructure in place to steal money from victims’ accounts. A money mule is a person that, for a small fee, holds stolen funds in their own bank accounts before transferring it to the accounts of attackers.
Head of CSIS’ eCrime Unit, Peter Kruse, said that it is as yet unclear whether attackers are using Dyre for themselves or renting it out to other cybercriminals, as was done to overwhelming effect with the Zues Trojan.
Installing Cloud Web Security
The constant threat of malware and its proven success serve as a timely reminder that computers should be locked down with security software. No one individual or business is immune to phishing attempts and web users must stay vigilant.
Cloud Web Security employs the most advanced software on the market, including anti-malware and anti-phishing systems, to ensure computers and networks are protected from the threat of Trojans at cloud level.
A successful malware attack can have devastating consequences; do not put yourself in a position to be victimised – contact ITWiser about Cloud Web Security today.