Attackers raid SWISS BANKS with DNS and malware bombs

  • 23 July 2014
  • 1 reply
  • 360 views

Userlevel 7
Badge +54

'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts

By Darren Pauli, 23 Jul 2014
 
Attackers suspected of residing in Russia are raiding Swiss bank accounts with a multi-faceted attack that intercepts SMS tokens and changes domain name system settings, researchers have warned.
The attacks sported a clever implementation of malware that pointed victim machines to replica phishing bank sites when they attempt to access their accounts without triggering any warnings.
 That tactic was accomplished by malware that manipulated a victims' DNS settings and installed an SSL certificate for the phishing sites before wiping itself clean to remove evidence of infection.
 
Full Article

1 reply

Userlevel 7
These banks are going to have to get a lot smarter and more diligent on their security measures to keep up with these type of attacks.

Reply