NEW YORK (MainStreet) — Cyber security experts are sounding an alarm and, wake up, your online banking account may be at high risk. The weapon of the moment: Dyre, slick malware that, said security firm Symantec in a recent white paper, is capable of attacking the three main Windows web browsers (Internet Explorer, Chrome and Firefox) “in order to steal credentials.”
Already over 1 million bank accounts are believed to have been stolen worldwide by Dyre, said experts. Symantec now characterizes it as “the most dangerous financial Trojan.”
How it works is that Dyre sees that a victim is about to log into a bank site. It intercepts and redirects the victim to a bogus site designed to look exactly like the real banking site. The victim is prompted to log in and, as he does, the credentials are snagged. And then, usually, Dyre redirects the victim to the real site, in order to minimize suspicion.
Sound bad? It gets worse. Symantec claims that it has found evidence of over 1,000 counterfeited sites. It added: “The list of targets is dominated by banks and it includes some of the world’s most well-known institutions.” Quite probably your bank is on the list.
Aren’t the shoddy website ripoffs a tip-off that something hinky is happening? It used to be the case, yes, scam websites shrieked knockoff, but Trend Micro spokesperson Christopher Budd said that in many cases today the counterfeits look good with Dyre.
Trend Micro, too, is raising warnings about Dyre. Budd told TheStreet that his company has seen a 125% increase in Dyre attacks quarter on quarter, with most of the attacks focused on Europe and North America. But attacks in Asia are on the rise, he said.