Kaspersky Lab has contributed to an alliance of law enforcement and industry to undertake measures against cybercriminal infrastructure attacking online banking systems around the globe using the Shylock Trojan.
On 8 & 9 July, 2014, law-enforcement agencies took action to disrupt the system that Shylock depends on to operate effectively. This comprised the seizure of servers that form the command and control system for the Trojan, as well as taking control of the domains Shylock uses for communication between infected computers.
The operation, coordinated by the UK’s National Crime Agency (NCA), brought together partners from the law-enforcement and private sectors, including – besides Kaspersky Lab – Europol, the FBI, BAE Systems Applied Intelligence, Dell SecureWorks and the UK’s GCHQ (Government Communications Headquarters) to jointly combat the threat.
During the concerted action, several previously unknown parts of the infrastructure were discovered, allowing follow-up actions to be initiated immediately and coordinated from the operational centre in The Hague.
Sergey Golovanov, Principal Security Researcher, Kaspersky Lab, said, “Banking fraud campaigns are no longer one-off cases. We have seen a significant rise in these kinds of malicious operations. Just in 2013, the number of cyber-attacks involving malware designed to steal financial data increased by 27.6% to reach 28.4 million. To fight cybercrime, we provide threat intelligence to law-enforcement agencies all over the world and cooperate with international organizations such as Europol. Global action brings positive results – an example being the operation targeting Shylock malware.”
Victims are typically infected by clicking on malicious links, and then persuaded to download and run the malware without their knowing. Shylock then seeks to access funds held in business or personal bank accounts, and transfer them to the criminal controllers.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.