Browsing Privacy | Dyreza malware steals IT supply chain credentials

Cyber-criminals using the Dyreza computer trojan appear to be shifting gears from online banking and moving into the industrial supply chain.

New versions of Dyreza are configured to steal credentials for order fulfillment, warehousing, inventory management, e-commerce and other IT and supply chain services. This represents a deliberate strategy on the part of attackers to target new industries at all points across the supply chain, researchers from security firm Proofpoint said in a blog post.

“We suspect a financial motivation,” they said. “Once an attacker has obtained login credentials for their targeted systems, the potential to harvest payment information, make fraudulent financial transfers, and even divert physical shipments is immense.”

Dyreza first appeared in June 2014 and was originally designed to steal online banking credentials by injecting its code into the local browser processes and monitoring login sessions. This attack technique is known as man-in-the-browser (MITB) and is commonly used by online banking trojans.

Read the Full Article: Source – CSO Online
Browsing Privacy: (CSO Online) – Dyreza malware steals IT supply chain credentials

source not found

Leave a Reply Cancel Reply

Keep Up To Date

Recent Posts

Tag cloud

Recent Comments

Categories

Navigation

Keep Up To Date

Related Article

OpenSSL fixes serious denial-of-service bug, 11 other flaws

Police criticised over spy-cam tweet of comedian Michael McIntyre in street

California dentist announces theft of server containing patient information

Leave a Reply Cancel Reply

Keep Up To Date

Recent Posts

Tag cloud

Recent Comments

Categories