The PhishLabs Blog

Enhancements to Dyre Banking Trojan


The Dyre banking Trojan made its first debut in June 2014, targeting large financial institutions across the globe. In September, PhishLabs’ R.A.I.D (Research, Analysis, and Intelligence Division) observed a number of enhancements to the banking Trojan that further increases the danger of the threat.

Banking Trojans Expand Beyond Financial Targets

The most recent attack utilizing the Dyre Trojan targeted the cloud computing company, Salesforce.com. Historically, banking Trojans were used to steal account credentials of banking customers but now sensitive business data is being stolen from companies in the healthcare industry, retail, software industry and others. Malicious software developers are seeking access to organizational systems and operating systems to steal data that would aid in identity theft for purposes of committing fraud. Attackers remain patient and persistent; evolving the tools, harvesting the data and attacking when it is unexpected.

Read More

Topics: Lure, Trojan, Dyre Banking Trojan

Targeted Wire Transfer Scam Aims at Corporate Execs


PhishLabs has discovered a fraudulent invoice campaign targeting corporate executives. The scammers attempt to convince their targets to wire funds to various accounts controlled by the fraudsters in order to settle the terms and outstanding balances on legitimate invoices from other companies.

What to look for

Emails associated with this campaign follow this characteristic pattern: 

Read More

Topics: Phishing, Fraud, Threat Analysis, Lure, Spam

“Your ACH Transaction” spam leads to malware

Posted by John LaCour on Feb 24, '11

PhishLabs has discovered a new malware campaign which appears to be an alert from NACHA regarding a failed ACH transaction. If a vulnerable user clicks the enclosed link, they will be infected with malware.

Read More

Topics: Malware, Threat Analysis, Lure

CAIXA Brasil malware attack

Posted by John LaCour on Jan 5, '09

CAIXA is the Federal Bank in Brasil which not only services private banks but millions of Brasilians through the national lottery, social services, unemployment benefits, and other services. 

Read More

Topics: Malware, Fraud, Threat Analysis, Lure

   

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Upcoming Events

Calendar_Mock_