Dridex / Cridex Banking Trojan

We are seeing an increased amount of email traffic for this particularly nasty virus. Typically a trojan downloader is delivered in a MS Word or Excel file which uses a macro to infect the machine as soon as the file is opened and then downloads the Dridex virus in the background. The email could appear to be from a well known organisation and usually claims to be an invoice or similar financial document.

 

Once Dridex has infected your machine it will make no obvious change in the hope you will not notice it is there. However when it detects you are logging into your online banking it will transmit information to a command and control server and within minutes the criminals behind this virus will transfer money from your account. Amounts of between £5000 and £100000 have been stolen in single incidents though usually at the lower end to avoid the bank detecting anything suspicious.

 

If you believe you may have inadvertantly opened an email containing this virus do not login to your online banking. Call our help desk on 0161 393 2029 so we can advise and if required scan and clean your machine.

 

While having an anti virus solution is always recommended you must bear in mind that paid professional programmers are writing these viruses today and it is their job to avoid being detected so be very wary of any email attachments which are not expected.