Home Cybersecurity Dyreza Banking Trojan Threat Upgraded to Attack Windows 10 and Edge Web Browser Users

Dyreza Banking Trojan Threat Upgraded to Attack Windows 10 and Edge Web Browser Users

Posted: November 19, 2015

online banking trojan Dyreza attack win10Just in time for the holiday season, the Dyreza banking Trojan horse, known for its data-stealing ways to infiltrate online banking accounts, is updated with a new variant containing the ability to attack Windows 10 systems and the latest Edge web browser application.

Spotted and analyzed by Heimdal Security, a European-based cyber security vendor, Dyreza's latest variation has additional support to seek out security products and kill their underlying OS processes all on the latest Windows 10 operating system. The updated features of Dyreza enable it to work on PCs having both 32-bit and 64-bit architecture, not just the latest computers running Windows 10.

Our previous research shows us that the Dyreza banking Trojan was commonly spread through the Upatre downloader threat, which included a botnet to make matters worse on vulnerable systems. As we know with banking Trojan threats, they are crafty in their undetectable activities where they attempt to collect as much information about the user of an infected computer to ultimately obtain online banking login credentials.

The dangers of the latest variant of Dyreza have yet to be seen but we strongly believe that it will be extremely destructive in knowing the holidays are approaching, and computer users will be taking to the internet in droves to shop online. With the added activity during the holiday season, Dyreza has a fair chance of being the most effective. Research has shown where Dyreza was quite active and there were over 80,000 machines infected with the malware through previous studies.

The machines infected with Dyreza are part of a botnet that instructions can be received, delivered from a centralized command and control server to those infected systems. The holiday timing of Dyreza receiving an update is optimal where infection patterns could see a major uptick and malware downloaders through aggressive spam campaigns to spread Dyreza could be on the rise.

Other notable changes in looking at the latest variant of Dyreza, is that it hooks onto your web browser. You can call it a form of monitoring your internet activities, which include logging into your banking account. Dyreza can now exploit the latest web browser from Microsoft, Edge, which ships with every new copy of Windows 10.

After the data exploited by Dyreza, mostly banking login details, is found, Dyreza will then pack it into an HTTP request and send it to a remote command and control server where cybercrooks could use it to infiltrate banking accounts.

As far as protecting yourself from threats like Dyreza during the holiday season and beyond, it is wise to always keep your software updated and to run an antimalware or antivirus product to seek out and remove threats like the Dyreza banking Trojan.

Loading...