CATEGORIES
home IT/Enterprise

Dyre Wolf Malware Nets Cyber Criminals Millions From The Enterprise

by Rob WilliamsSaturday, April 04, 2015, 02:50 PM EDT

Think stealing hundreds of thousands of dollars from an enterprise organization is difficult? You might be surprised after learning about how the 'Dyre' malware that IBM has been tracking operates.

Like most malware, Dyre needs to infect a PC in order to work. This can be done via a number of different methods, but email is the most common. Once someone takes the bait, the waiting game begins for a bank transfer to be made. If the thieves behind Dyre are lucky enough to infect an important PC, an error message will be displayed in the event that a bank transfer is initiated, complete with a phone number to call to initiate a manual transfer.

There are a couple of interesting aspects to this: Dyre (or 'Dyre Wolf' as IBM calls it) supports the detection of a few hundred banks, and the phone number included in the error message is the same regardless of which one was detected. I'd assume that as soon as an error message spawns, a notification is sent back to home base that tells the operator which bank website was being used at that moment.

Dyre Wolf IBM

Nonetheless, because the thief picks up the phone on behalf of the correct bank, the victim is none-the-wiser. As soon as the victim hangs up, the money has been transferred - just not to the right account.

One of the biggest issues with Dyre is that it isn't picked up by most anti-virus solutions, and ultimately, it's not even the malware that conducts the dastardly deed. Ultimately, it's social engineering that makes this all work.

That being the case, this is one of those instances when anti-malware protection doesn't matter that much. Instead, companies need to better train their employees to handle situations like these effectively, and also waste no time in reporting suspicious activity. IBM even goes on to say that it'd be useful for companies to stage phishing attempts to test their employees' ability to combat it.

If there's one thing that Dyre highlights, it's that it's not actually that hard to rip-off even the largest of companies, regardless of how much security they have. Ultimately, humans prove to be the weakest link.

Tags:  Malware, IBM, Enterprise, DDoS, nyse:ibm
TOP CONVERSATIONS
Your Next PC Platform?
More Results
KEEP INFORMED
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT Infrastructure

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

Privacy And Terms

HotTech

MORE

Accessibility

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

As an Amazon and Howl Technologies Associate, HotHardware earns a commission from qualifying purchases made on this site. This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of Hot Hardware, Inc. is prohibited. All content and graphical elements are Copyright © 1999 - 2024 David Altavilla and Hot Hardware, Inc.
All rights reserved. Privacy and Terms - Accessibility Commitment