Bank Systems & Technology is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


03:27 PM
Connect Directly

New Virus Targets Online Users of 137 Banks

M86 Security Labs says it has discovered a Cridex Trojan virus delivered via e-mail spam.

M86 Security Labs, an Irvine-Calif.-based secure web gateway solutions provider, announced that it has discovered a Cridex Trojan virus distributed through a Phoenix exploit kit that is targeting 137 financial organizations around the globe.

According to M86 researchers, the attacks started with several large spam campaigns by cyber criminals who had previously compromised hundreds of WordPress-based websites. The spam emails included embedded URL links or HTML attachments that trick the victim to browse those compromised websites, said M86. All these links eventually lead to web pages infected with the Phoenix exploit kit.

"After the target machine is successfully exploited, the Phoenix exploit kit downloads a Trojan to the victim's machine," writes Daniel Chechik in a blog position the M86 website. "The downloaded Trojan is recognized by antivirus vendors under several names such as Cridex, Carperb and Dapato. Antivirus detection is quite low and only ten out of 43 antivirus scanners in VirusTotal can detect it."

After the virus is downloaded, the cyber criminals can then track specific websites that are accessed by the user by taking screenshots of every page the user accessed in real time, writes Chechik.

According to M86, Cridex has a plug-in which includes a database of 137 banks. The control panel contains the structure of the banks' web pages, so the Trojan can identify which valuable fields to send back to the command and control server. Moreover, the cyber criminals can create and change forms that are normally completed by the victim, writes Chechik.

Bryan Yurcan is associate editor for Bank Systems and Technology. He has worked in various editorial capacities for newspapers and magazines for the past 8 years. After beginning his career as a municipal and courts reporter for daily newspapers in upstate New York, Bryan has ... View Full Bio

Register for Bank Systems & Technology Newsletters
Bank Systems & Technology Radio
Archived Audio Interviews
Join Bank Systems & Technology Associate Editor Bryan Yurcan, and guests Karen Massey and Jerry Silva from IDC Financial Insights, for a conversation about the firm's 11th annual FinTech rankings.