Sales League Table 2020 | Banking Technology Winners

Results Announced!

IBS Intelligence launches BankTech Daily News

Subscribe today. Limited time offer.

The Black Swan Opportunity | Get your bank digital ready.

IBSI Special 5 Digital Report Package with Special Offer. Subscribe now

India FinTech Report 2020

Insights into the historical and projected market size of key FinTech categories. Subscribe now

Cybercriminals use Microsoft vulnerability to spread Dridex banking malware

Millions of email users have been attacked by a new cybercrime campaign aiming to exploit a vulnerability in Microsoft Office. The backdoor was discovered by McAfee last week and according to new research from security firm FireEye, criminals ae already trying to take advantage.

FireEye first identified the vulnerability last month, it claims, where Russian hackers were aiming to use it to steal credentials. Earlier this week, though, a large email campaign was undertaken by cybercriminals to attack banking users in Australia.

The email was designed to imitate one that may have come from a printer or scanner. An attachment in the mail, once opened, infected the target with the well-known Dridex malware. The virus then got to work stealing credentials, banking logins and passwords.

“Following a disclosure of specifics related to the zero-day on 7th April 2017, the vulnerability was used in DRIDEX spam campaigns, which continue as of the publication of this blog,” writes FireEye.

“We cannot confirm the mechanism through which the actors obtained the exploit. These actors may have leveraged knowledge of the vulnerability gained through the disclosure, or been given access to it when it became clear that patching was imminent.”

McAfee Labs Vice President Vincent Weafer told CyberScoop that it had not published any technical information and called the blog a report of “in-the-wild” attacks, not a vulnerability disclosure.

Related IBS Intelligence Research

Related Posts

People’s United Bank partners with FIS & MineralTree to bolster Treasury Management

People’s United Bank, a subsidiary of People’s United Financial, has expanded its Treasury Management Payment offering in partnership with FIS and MineralTree to bring to market two AP Automation solutions that will replace traditional paper-based processes with simple, secure digital capabilities for Commercial Banking clients. The new enhancements are part of People’s United’s strategy to […]

This post is only available to members.

Read More »
Credorax, bank, payments

Credorax partners with Feedzai for Anti-Money Laundering

Credorax, a licensed bank and smart payments provider, and San Mateo-based risk management platform Feedzai, announced a new partnership to provide Credorax merchants with anti-money laundering (AML) and anti-fraud capabilities. The collaboration is expected to increase payment security, reduce operational costs and improve customer experience. “Credorax has a long-standing relationship with Feedzai and we are excited […]

This post is only available to members.

Read More »

Currencycloud to process cross-border payments on RippleNet

Payments provider Currencycloud has partnered with Ripple, announcing it will process cross-border payments on global financial payments network RippleNet. With the partnership, Currencycloud, which delivers embedded B2B cross-border payments for a number of banks and FinTechs, will focus on new territories currently under-represented for small and medium-sized enterprises. This, it said, is in order to […]

This post is only available to members.

Read More »
Techemy, Auckland, DeFi , Finance

Techemy Capital launches DeFi strategies for investors

Techemy Capital (TCAP), a regulated financial services provider and funds management company, announced the launch of DeFi-based investable products to help investors tap into the open finance ecosystem. Run by programmable algorithmic code, DeFi removes middlemen and connects principals directly, thereby reducing capital inefficiency to enable higher yields. Hosted on the TokenSets platform, Techemy’s new […]

This post is only available to members.

Read More »