US Department of Homeland Security issued an alert this week about the spread of e-mail phishing campaign “Drye” (or Dryze) Bank malware. Drye for user banks and financial websites, steal their login credentials and financial fraud.
Drye was widely reported in June this year, but the land has warned complex phishing attackers. Drye use middleman attacks allow hackers to intercept unencrypted web traffic. Victims think they have a secure connection with the financial Web site, but in fact they have been transferred to the hacker’s server.
Fishing activities in the network, hackers send fraudulent e-mail, hoping to trick the recipient into downloading malicious software or visit a malicious Web site. According to the Department of Homeland Security, which generally use the e-mail subject “unpaid invoices” and contain infectious PDF attachments. If you open the attachment, it will use the non-patched version of Adobe Reader vulnerabilities to download malware Bank.
This threat is similar to Zeus banking Trojan, in the past year is responsible for billions of dollars in financial fraud. However, unlike some of the variants, the branch this is not Zeus source code.
Homeland Security offers the following recommendations to deal with this type of activity, but we must emphasize that this is to deal with all phishing activity recommendations:
Users and administrators recommends the following precautions to protect their computer networks to avoid being a phishing effect:
“Do not click on web links in unsolicited e-mail
“Prudent open email attachments
“Browse the Web to comply with safety rules
“Make sure your antivirus software updated to the latest version of
“Keep your operating system and software the latest patches
Comodo may be targeted for those of employees and customers to design a unique solution. Comodo SecureBox is a client application, you can ensure that applications can run and communicate critical data secure even if the client computer has been infected. Learn more