Originating back in 2011, Dridex has been plaguing inboxes for years. In the past, this form of malware was linked to Banker Trojans and would set out to steal financial information and credentials through spam emails. The process was automatic, and the attackers were granted access to minimal information.

Fast forward to 2019, Dridex is now being used in conjunction with Bitpaymer ransomware. The new procedure is manual in nature, with  attackers installing malware and gaining further access to victims’ networks. Our expert security analysts have noticed a surge of this activity and are advising companies to remain vigilant.

The main method of attack appears in the form of a phishing email attachment, usually titled as “Invoice PDF.” Because of this, Pondurance also advises companies to stay on top of their phishing email education to remind their employees of the risks around opening unidentified email attachments.

 

If you experience anything that slightly resembles this, CALL US | 317.663.8694

Think you’re security savvy? Test your skills with Google’s Phishing Quiz here.