See Also - Attackers raid SWISS BANKS with DNS and malware bombs
Malware still performs self-delete command
By Ionut Ilascu on October 13th, 2014 Attack using Retefe Trojan. A new list of targeted financial institutions has been spotted in the configuration file of Retefe malware, which now aims at banks in Japan, too.The Trojan is designed for man-in-the-middle (MiTM) attacks consisting of intercepting the connection from the user to the bank by changing the DNS (domain name server) settings, allowing to rout the connection through the cybercriminal’s infrastructure.
This allows full access to the traffic without raising the suspicion of the victim, who sees no sign of fraudulent activity. Full Article
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.