‘Dridex’ malware revives Microsoft Word macro attacks

A recent piece of malware that aims to steal your online banking credentials revives a decade-old technique to install itself on your PC.

Called Dridex, the malware tries to steal your data when you log into an online bank account by creating HTML fields that ask you to enter additional information like your social security number. Thats not unusual in itself: Dridex is the successor to a similar piece of malware called Cridex which also targets your bank account.

Whats different is how Dridex tries to infect your computer in the first place. Its delivered in the form of a macro, buried in a Microsoft Word document in a spam email message.

To read this article in full or to leave a comment, please click here

Network World Security