Dyre virus is a dangerous trojan horse, which in other sources can be found named as Dyreza or Dyre/Dyreza. Dyre virus, similar to bank trojan virus Zeus, creates problems to users in many countries, Romania included, stealing authentication data for e-banking services, Bitdefender warns in a press release on Thursday.
“A new wave of messages included the banking virus Dyre has in view clients of financial institutions in several countries, Romania included. Once installed, the virus steals authentication data of e-banking services. Local banks attacked by the virus have a cumulated market share of 40%. E-banking service users are invited to download an archive type file coming from a financial consultant. The message pretends to be the continuation of a previous discussion and suggests clients to download the file in order to finish a financial transaction. A second message says it contains financial documents sent to the client and asks him to check the authenticity of transactions. A third message informs the client about sanctions imposed on his company and invites him to see the list of infringements,” Bitdefender specialists explain.
Dyre virus appeared for the first time in 2014 and is installed on the user’s computer, becoming active when he introduces data on a specific site, the authentication page of a bank.According to Peter Kruse, partner and security specialist for CSIS Security Group, like many RATs on the black market, Dyreza is designed specifically to attack online banking customers.
According to Birdifender Labs, 19 million e-mails have been sent in three days from servers in the USA, Taiwan, Hong Kong, Denmark, Russia, China, South Korea, Great Britain and Australia.
Microsoft Windows. Dyre virus is mostly spread via spam, so you should be very careful with suspicious emails and files that are typically attached to them
Since mid-October 2014, a phishing campaign has targeted a wide variety of recipients while employing the Dyre/Dyreza banking malware. Elements of this phishing campaign vary from target to target including senders, attachments, exploits, themes, and payload(s).
A system infected with Dyre banking malware will attempt to harvest credentials for online services, including banking services.
Do not follow unsolicited web links in email. Refer to the Security Tip Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.