A massive spam wave is installing banking Trojan Dyreza on tens of thousands of computers to steal sensitive financial data from unsuspecting customers, warns Bitdefender, the antivirus solutions provider. 30,000 malicious emails were sent in just one day from spam servers in the UK, France, Turkey, US and Russia.
Catalin Cosoi continues: "Considering the malware's behaviour, it is worth pointing out that mitigating this vulnerability does not lie in the hands of the financial institutions targeted, but in the user's own actions. It's like using a public computer from an internet café to pay your bills - if you forget to log out from your account, anyone can access it and transfer money to their own pockets."
Bitdefender detects and blocks all elements of the threat: the .js file, the downloader and the executable. The Trojan is detected as Gen:Trojan.Heur.AuW@Izubv1ni. Bitdefender reminds users to avoid clicking links in e-mails from unknown e-mail addresses and, of course, keep their anti-malware solution up-to-date with the latest virus definitions.