According to IBM a unique and well-planned phishing-cum-phone call based fraud system has been in operation for some time, which as robbed a number of US businesses off over a million dollars.
The company has detected the source of this online phishing racket, named as The Dyre Wolf, to a well-managed and financed Eastern European group of hackers. It is a warning sign for businesses worldwide that they cannot just rely on their age-old anti-malware and anti-phishing programs.
Also see:- Google vs. Facebook on Privacy and Security – Infographic
Although the fraudulent system may not be as large as other cyber threats, it is the very nature of this scheme that concerns IBM and other online security professionals.
IBM has announced that these cyber criminals have been sending out spam emails to company employees with attachments that could deliver the Dyre malware to their systems.
The malware docks itself onto a computer system and waits for the user to reach a login page, such as the login page of a bank’s website. It will then create a fraudulent screen informing the user about issues with the bank’s website and provides a phone number to make a call.
Recommended:- IBM Reveals Bluemix Findings from Three Companies
Once the user makes a call to the number, the operators will seek bank login information from them and process instant wire transfers from their accounts.
The organization of live phone operators behind this fraud scheme has intrigued security experts at IBM Security. It is a clear indication that there is a well-organized and well-planned group operating behind this cybercrime.
According to IBM, never before has such a fraudulent system been detected earlier. However, the company hasn’t listed any names with regard to the victims. What makes the new threat more intriguing is that the money is transferred through a series of bank accounts to prevent detection.
The group is also capable of affecting the web accessibility of users so that they will not be able to detect login theft until the damage has been done.
Also Read:- Elaborated Process To Open Encrypted NSF File in MS Outlook
According to IBM the first line of defence against this threat is to educate all workers not to download any suspicious emails with attachments and to never disclose their banking information to anyone over the phone or online.