Skip to main content
The homepageVoxVox logo
The homepageVoxVox logo

The context you need, when you need it

When news breaks, you need to understand what actually matters — and what to do about it. At Vox, our mission to help you make sense of the world has never been more vital. But we can’t do it on our own.

We rely on readers like you to fund our journalism. Will you support our work and become a Vox Member today?

Join now

IBM Uncovers New, Sophisticated Bank Transfer Cyber Scam

The scam involves a combination of phishing, malware and social engineering.

by Reuters
IBM

IBM has uncovered a sophisticated fraud scheme run by a well-funded Eastern European gang of cyber criminals that uses a combination of phishing, malware and phone calls that the technology company says has netted more than $1 million from large and medium-sized U.S. companies.

The scheme, which IBM security researchers have dubbed “The Dyre Wolf,” is small in comparison with more recent widespread online fraud schemes but represents a new level of sophistication.

According to IBM, since last year the attackers have been targeting people working in companies by sending spam email with unsafe attachments to get a variant of the malware known as Dyre into as many computers as possible.

If installed, the malware waits until it recognizes that the user is navigating to a bank website and instantly creates a fake screen telling the user that the bank’s site is having problems and to call a certain number.

If users call that number, they get through to an English-speaking operator who already knows what bank the users think they are contacting. The operator then elicits the users’ banking details and immediately starts a large wire transfer to take money out of the relevant account.

The use of a live phone operator is what makes the scheme unique, said Caleb Barlow, vice president of IBM Security.

“What’s very different in this case is we saw a pivot of the attackers to use a set of social engineering techniques that I think are unprecedented,” said Barlow. “The focus on wire transfers of large sums of money really got our attention.”

IBM did not release any details on which companies fell prey to the scheme or the location of the perpetrators.

Once the transfer is complete, the money is then quickly moved from bank to bank to evade detection. In one instance, IBM said, the gang hit the victim company with a denial of service attack — essentially bringing down their Web capabilities — so it would not discover the theft until much later.

IBM’s security unit is recommending that companies make sure employees are trained in spotting phishing attacks — where emails or attachments can infect a computer — and to never provide banking credentials to anyone.

(Reporting by Bill Rigby; Editing by Steve Orlofsky)

This article originally appeared on Recode.net.

See More:

Most Popular

  1. The Supreme Court will decide when the police can use your phone to track you
  2. The war in Iran isn’t ending — it’s becoming something new
  3. Take a mental break with the newest Vox crossword
  4. Pete Hegseth’s spiritual leader explains his radical faith
    Podcast
  5. The Air Quality Index and how to use it, explained

More in Technology

Politics
The Supreme Court will decide when the police can use your phone to track youThe Supreme Court will decide when the police can use your phone to track you
Politics

Chatrie v. United States asks what limits the Constitution places on the surveillance state in an age of cellphones.

By Ian Millhiser
Future Perfect
The simple question that could change your careerThe simple question that could change your career
Future Perfect

Making a difference in the world doesn’t require changing your job.

By Bryan Walsh
Technology
The case for AI realismThe case for AI realism
Technology

AI isn’t going to be the end of the world — no matter what this documentary sometimes argues.

By Shayna Korol
Politics
OpenAI’s oddly socialist, wildly hypocritical new economic agendaOpenAI’s oddly socialist, wildly hypocritical new economic agenda
Politics

The AI company released a set of highly progressive policy ideas. There’s just one small problem.

By Eric Levitz
Future Perfect
Human bodies aren’t ready to travel to Mars. Space medicine can help.Human bodies aren’t ready to travel to Mars. Space medicine can help.
Future Perfect

Protecting astronauts in space — and maybe even Mars — will help transform health on Earth.

By Shayna Korol
Podcasts
The importance of space toilets, explainedThe importance of space toilets, explained
Podcast
Podcasts

Houston, we have a plumbing problem.

By Peter Balonon-Rosen and Sean Rameswaram