Dridex banking Trojan compromises FTP sites in new campaign

Researchers have discovered the Dridex banking Trojan has once again evolved and is now using compromised FTP websites in phishing campaigns.

The Trojan was first spotted back in 2014 after targeting banks in the United Kingdom.

Since then, Dridex has become infamous for striking financial institutions across Europe.

The malware spreads through phishing campaigns, duping victims into downloading and executing malicious macros hidden in Microsoft documents, as well as attacks by way of web injections.

Once the Trojan has compromised a PC, it steals online banking credentials which can then used fraudulently by operators to plunder bank accounts.

Read more…
Source: ZDNet