Advertisement
Last year, Kaspersky had discovered ‘ATMDtrack’ – a banking malware that was targeting ATMs in India to steal customer’s card data.
“Following further analysis using Kaspersky Attribution Engine and other tools, the researchers found over 180 new malware samples that had code sequence similarities with ATMDtrack. However, these were clearly not aimed at ATMs and instead their list of functions defined them as spy tools – now known as Dtrack,” Konstantin Zykov, Security Researcher at Kaspersky’s Global Research and Analysis Team told reporters here.
He added that there were also similarities with Lazarus Group’s 2013 DarkSeoul campaign.
Related Articles
Advertisement
Kaspersky did not disclose details of entities that may have faced such attacks.
Dtrack can be used as a remote admin tool (RAT), giving threat actors control over infected devices.
To protect themselves against such attacks, enterprises should tighten their network and password policies, perform regular security audits, train employees on security as well as monitor traffic against unusual activities.
They should also use security solutions and update them with the latest patches.