Anti-virus vendor SecureWorks has raised an alert on a variant of the Prg Trojan that pilfers commercial bank accounts by initiating wire transfers.
The latest attack is being orchestrated by a German group working in conjunction with UpLevel, a Russian malware-developing organization, according to Jackson. He said that the German group purchased the confidential information of thousands of victims of previous Prg attacks from UpLevel, which is also providing hosted servers and various other services for the unnamed group.
The detailed series of events that were used to perform the attacks throw light on the determination of phishers and hackers.
The attacks are targeted at individuals whose information was obtained from the attacks by previous variants of the Prg Trojan. Phishing e-mails are sent to these individuals, and clicking on the embedded links causes the installation of the new variant of the Prg Trojan on their system. When the individual visits a banking site, the Trojan initiates wire transfers to compromised bank accounts in the background. The money is shifted to other accounts to avoid detection. Over $200,000 has already been stolen in this manner.
The Trojan automates all the steps a user usually takes in banking transactions, essentially making them undetectable at the bank's end.
Financial activities online are lucrative targets for malware attacks. Awareness is the key to safety here.
————————————————————————————————————————Stay on top of the latest tech news
Get this news story and many more by subscribing to our free IT News Digest newsletter, delivered each weekday. Automatically sign up today!