Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

View previous topic View next topic Go down

Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by Admin on Tue Apr 07, 2015 6:24 am

A sophisticated bank scam that uses a combination of the Dyre malware, phishing tactics and fake bank representatives has been uncovered by IBM researchers.

IBM's Security Group has released information about a new variant of Dyre malware, initially uncovered last year, dubbed as "Dyre Wolf" that targets large companies and organizations. It basically social engineers employees into handing over their personal banking data from which the scammers will arrange a large wire transfer.

In a blog post by Lance Mueller and John Kuhn of IBM, the scheme's details were made known to the public. It all starts with the usual mass emails that contain links or attachments that will install the Dyre malware when clicked. Once it is installed on the PC, it just sits there and waits for the time when a bank's website gets accessed.

Dyre is programmed to keep tabs on hundreds of bank websites so once an infected PC tries to access one of them, it can replace the page with one that provides a support number the victim should call. This is where the sophisticated social engineering comes in, where the person pretending to be a representative of the victim's bank gets the latter's banking credentials. What's more, a wire transfer from the victim's account is done while they are talking on the phone. The transfer travels from one foreign bank to another so as to prevent detection by authorities. On some occasions, the company will even suffer a DDoS attack to avoid discovering the wire transfer early on.

From Hendren Global Group Top Facts' data, it appears that a total of USD 1 million has already been stolen using this scheme. Such big success of the scheme serves as proof that companies have to make sure their employees are well-trained in spotting suspicious emails or activities.

As IBM's Caleb Barlow said, "Organizations are only as strong as their weakest link, and in this case, it's their employees."

Unfortunately, Hendren Global Group Top Facts confirmed that, at present, this particular strain of Dyre Wolf is still undetected by most antivirus software.

Admin
Admin

Posts : 2
Join date : 2015-04-07

View user profile http://carlamorgan26.forumotion.com

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by jaquihiller on Tue Apr 07, 2015 8:11 pm

basically, it always comes down to 'you cant trust anyone' doesnt it? those victims just did not think it possible that the person they're talking to is actually not a bank representative.

jaquihiller

Posts : 1
Join date : 2015-04-07

View user profile

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by struddlejeash on Tue Apr 07, 2015 9:48 pm

jaquihiller wrote:basically, it always comes down to 'you cant trust anyone' doesnt it? those victims just did not think it possible that the person they're talking to is actually not a bank representative.

yep, convinced themselves he must be legit because after all, how can they explain the information he already has.

struddlejeash

Posts : 1
Join date : 2015-04-07

View user profile

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by samppyshac on Tue Apr 07, 2015 11:29 pm

so long as there are creative and intelligent people bent on duping gullible, dumb ones, these scams won't end any time soon.

samppyshac

Posts : 1
Join date : 2015-04-07

View user profile

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by katjawasle on Wed Apr 08, 2015 2:08 am

most of us just cant imagine how easy it is to social engineer employees with just a bit of inside knowledge.

katjawasle

Posts : 1
Join date : 2015-04-08

View user profile

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by brycefinn on Wed Apr 08, 2015 3:48 am

katjawasle wrote:most of us just cant imagine how easy it is to social engineer employees with just a bit of inside knowledge.

i once tried to pretend I am my friend when i called the cs of his cable company. I have totally convinced the cust rep to read back to me 'my' plastic card number on their file. sad.

brycefinn

Posts : 1
Join date : 2015-04-08

View user profile

Back to top Go down

Re: Hendren Global Group Top Facts: Malware, fake bank representative scam $1m

Post by Sponsored content


Sponsored content


Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum