1 min read

Dyre Banking Trojan Still Phishing for Data, US-CERT Warns

Alexandra GHEORGHE

October 29, 2014

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Dyre Banking Trojan Still Phishing for Data, US-CERT Warns

A new phishing campaign employs the Dyre banking Trojan to steal account credentials from enterprises and financial institutions, according to an alert by the Department of Homeland Security.

In the advisory, US-CERT said the phishing campaign uses various tactics, but mostly malicious PDF email attachments to download malware.

“Phishing emails used in this campaign often contain a weaponized PDF attachment which attempts to exploit vulnerabilities found in unpatched versions of Adobe Reader,” the alert reads.

The Dyre banking malware, also known as Dyreza, targets sensitive account credentials. Once downloaded and installed, the malware copies itself under C:\\Windows\[RandomName].exe and disguises itself as a fake program named Google Update Service to capture user login information and send the data back to the attackers.

For instance, a phishing email’s subject reads “Unpaid invoce” and invited the user to download the alleged unpaid invoice, coming with the email.

US-CERT said the campaign started in mid-October, and it’s not the first time Dyre banking malware is involved in a malicious campaign.

In early September, cloud-based CRM Salesforce issued a security warning to its millions of business users about the malware, as it attempted to steal login credentials from Salesforce customers.

Bitdefender blocks this threat and advises users to keep their anti-malware solution updated and take caution when opening unrequested email attachments.

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Chrome 96 Gets 22 More Security Fixes with New Incremental Update Chrome 96 Gets 22 More Security Fixes with New Incremental Update
Filip TRUȚĂ

December 08, 2021

1 min read
Most Employees Believe Passwords Affect Their Productivity, Research Finds Most Employees Believe Passwords Affect Their Productivity, Research Finds
Silviu STAHIE

December 06, 2021

1 min read
US State Department iPhones Infected with Pegasus Spyware – Report US State Department iPhones Infected with Pegasus Spyware – Report
Filip TRUȚĂ

December 06, 2021

2 min read