Kaspersky Lab specialists discovered a Trojan Mezzo, replacing the details in the exchange files between banking and accounting systems. Malicious software attacks fresh text files of accounting software. If, within a few minutes after the file is created, the employee opens a dialog box for sending information to the bank, the trojan will replace the details or completely replace the file with a fake one. According to experts, the Trojan can be used to replace the purses of the recipient of the crypto currency.
"Analysis of the Mezzo code showed that malware can be associated with another sensational Trojan hunting for crypto currency, - CryptoShuffler. Kaspersky Lab's experts found that the Mezzo code and AlinaBot, which downloads CryptoShuffler, are identical to almost the last line. Apparently, for both malware there are the same virus writers, which means that their cryptic users can also be interested in them, "the press service of the company reports.
The Trojan is distributed with the help of third-party downloaders, after which it infects the PC, identifies it and transfers all the information to the server. While Mezzo has infected very few computers, so the full-blown epidemic of speech is not yet coming.
Previously, developers Cryptoshuffler were able to steal just about $ 160,000, as the Trojan was executed quite clumsy, but security experts believe that Mezzo's activity may be the first bell, indicating the preparation of hackers for more serious actions.
Our chat about .
Our chat about .
The article is based on materials .
Comments
Post a Comment