Off the wire
Russia lifts ban on supply of S-300 missile systems to Iran  • Chinese Super League soccer standings  • Liu Zige out of form, two world top-3 times registered at China swimming  • AU deploys election observers to states in Sudan  • Africa Economy: Africa's 2015 growth to slow at 4pct: World Bank  • 22 security personnel killed in N. Afghanistan  • Spanish PM calls for int'l cooperation to face jihadism threats  • Feature: Indonesia's Bandung ready to welcome 60th Asia Africa Conference delegations  • Roundup: Voting in Sudan's troubled areas proceeds calmly despite rebel threats  • Chinese premier urges stronger clean energy cooperation with U.S.  
You are here:   Home

Slovak company exposes malware operation targeting Russian firms

Xinhua, April 13, 2015 Adjust font size:

Slovak security company ESET has exposed an operation called Buhtrap, which is designed to target financial departments of Russian firms, the firm said Monday.

Following the successful infection of computers, an attacker is able to monitor the compromised device, install additional malware, monitor all activities conducted on the device while stealing information about smart cards if the computer in question is equipped with a smart card reader.

"We believe that this operation is financially motivated and its target is financial departments of Russian firms," Zuzana Hosalova from ESET said.

Cyber criminals are sending their victims e-mails containing malware-infested Word documents in attachments. The emails were either counterfeit invoices or contracts from Russian mobile phone operator MegaFon that tricked the victims into opening the files.

The malware in question took advantage of Word vulnerability that has been fixed three years ago.

"Once the malware was installed in the computer, cyber criminals used their access to infect other computers in the network and then pursue fraudulent banking transactions via these devices," added Hosalova. Endit