New Twist to ZeuS Malware Found
Posted by: Timothy Weaver on 11/19/2015 10:38 AM
[
Comments
]
Researchers at Heimdal Security have found a new variant of the notorious banking trojan Dyreza.
The data stealing malware is a spin off from the infamous ZeuS malware. It targeted banks like the Bank of America, Natwest, Citibank, RBS, Ulsterbank. This latest variant works with Windows 10 and the new windows browser Edge to siphon off data and then transfer it to malicious servers.
The new variant also can get around a number of other security software measures, like anti-virus, which Heimdal Software researchers said, makes its penetration into systems faster and more effective.
As with so many other malware campaigns, it is delivered by spam emails with malicious attachments, either a ZIP, PPT or PDF file. Once a recipient clicks on the link, a downloader, “Upatre," delivers the malware onto the targeted machine to not only steal data from infected computers, but enlist them into a botnet that – with the appending of Windows 10 – is now estimated to contain 80,000 computers.
Andra Zaharia, a security specialist at Heimdal Security, said the big concern is how easy it is to purchase and deploy. As online transactions pick up, the malware will be capable of scooping up hordes of financial data.
Heimdal Security recommends that users do not click on links in emails and don't download attachments from unknown sources.
Source: SCMagazine
The data stealing malware is a spin off from the infamous ZeuS malware. It targeted banks like the Bank of America, Natwest, Citibank, RBS, Ulsterbank. This latest variant works with Windows 10 and the new windows browser Edge to siphon off data and then transfer it to malicious servers.The new variant also can get around a number of other security software measures, like anti-virus, which Heimdal Software researchers said, makes its penetration into systems faster and more effective.
As with so many other malware campaigns, it is delivered by spam emails with malicious attachments, either a ZIP, PPT or PDF file. Once a recipient clicks on the link, a downloader, “Upatre," delivers the malware onto the targeted machine to not only steal data from infected computers, but enlist them into a botnet that – with the appending of Windows 10 – is now estimated to contain 80,000 computers.
Andra Zaharia, a security specialist at Heimdal Security, said the big concern is how easy it is to purchase and deploy. As online transactions pick up, the malware will be capable of scooping up hordes of financial data.
Heimdal Security recommends that users do not click on links in emails and don't download attachments from unknown sources.
Source: SCMagazine
Comments
