Remember meForgot password?
    Log in with Twitter

article imageNew banking malware scam targets 20,000 in three days

By James Walker     Jul 9, 2015 in Technology
A new form of banking malware discovered in the UK could have infected 20,000 customers in the past week. The malware is distributed in an email and can allow the attackers to remotely control the targeted user's system, stealing their bank details.
ITProPortal reports that the "Dyre" malware, identified this week by security research firm Bitdefender, is a Trojan that lies dormant on a computer for potentially infinitesimal amounts of time. It is eventually activated when it detects that the machine's user has opened a website or app from a major bank.
The Trojan then steals the login details for the app by injecting malicious code into the app's sign-in page, a classic man-in-the-middle attack. The details are sent to Dyre's creators, giving them full access to the users' bank account.
A worrying attribute of Dyre is that it appears as though it could be adapted to steal credentials for other services with relative ease. Dyre has the potential to evolve into a sophisticated, credential-stealing malware capable of targeting large numbers of websites and online services.
For now, the attackers behind Dyre seem to be concentrating on banks because of the large rewards that can be easily obtained once they gain access to a customer's account. The malware currently seems to be contained in the UK but Barclays, Lloyds, HSBC, Santander and the Royal Bank of Scotland have reportedly all been affected.
Dyre is distributed in an archive downloaded from a fake email. It is unclear how many people have actually opened the email and inadvertently installed Dyre but it is wise to be extra vigilant when scrutinising any suspicious-looking communication from banks, especially those which tell you to click a link or download some software to your computer.
This isn't at all the first time that the Dyre malware has been observed in the wild. It has been plaguing banking customers for months but appears to have now returned again with another major phishing campaign. It is thought that nearly 20,000 fake emails were sent in just the last three days.
More about Malware, Scam, Phishing, Trojan, Infection
More news from
Latest News
Top News