Menu
US, UK disrupt Dridex botnet, which targeted online banking

US, UK disrupt Dridex botnet, which targeted online banking

Dridex is considered one of the most effective banking malware families

A cybercriminal network that caused at least US$10 million in losses has been disrupted by U.S. and U.K. law enforcement, with the U.S. seeking a Moldovan man's extradition, the Department of Justice said Tuesday.

Andrey Ghinkul, 30, is accused of being the administrator of the Dridex botnet, also known as Cridex and Bugat.

A nine-count indictment was unsealed on Tuesday in the U.S. District Court for the Western District of Pennsylvania, DOJ said. Ghinkul was arrested on Aug. 28 in Cyprus.

Dridex has been a real headache for a number of years. It collects online banking credentials from infected computers, which prosecutors said were then used to initiate large wire transfers.

In one example, Ghinkul and his gang allegedly transferred $2.1 million from an account of Penneco Oil Company, based in Delmont, Pennsylvania, to one in Krasnodar, Russia, on Aug. 31, 2012, according to the indictment.

Four days later, Penneco Oil was hit again, this time with $1.3 million going to an account in Minsk, Belarus. The same day, the group allegedly tried to transfer a further $76,520 from the company's accounts.

Penneco Oil's account information was believed to have been compromised after Ghinkul's group sent one of the company's employees a phishing email, prosecutors said.

Dridex is considered one of the top banking malware families. It spreads through targeted spam that contains attachments to malicious XML files, Microsoft Office documents with macros or links to malicious websites.

The malware can log keystrokes and inject fake HTML fields into Web pages that ask users for more sensitive information. It also can frequently escape detection by antivirus software.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Featured

Slideshows

Meet the leading female front runners of the Kiwi channel

Meet the leading female front runners of the Kiwi channel

Reseller News honoured the leading female front runners of the New Zealand channel at the 2018 Women in ICT Awards (WIICTA) in Auckland. The awards honoured standout individuals across seven categories, spanning Entrepreneur; Innovation; Rising Star; Shining Star; Community; Technical and Achievement.

Meet the leading female front runners of the Kiwi channel
Meet the top performing customer-centric Microsoft channel partners

Meet the top performing customer-centric Microsoft channel partners

Microsoft honoured leading partners across the channel following a year of customer innovation and market growth in New Zealand. The 2018 Microsoft Partner Awards recognised excellence within the context of the end-user, spanning a host of emerging and established providers.

Meet the top performing customer-centric Microsoft channel partners
Reseller News launches new-look Awards at 2018 Judges’ Lunch

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Introducing the Reseller News Innovation Awards, launched to the channel at the 2018 Judges’ Lunch in Auckland. With more than 70 judges now part of the voting panel, the new-look awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors.

Reseller News launches new-look Awards at 2018 Judges’ Lunch
Show Comments