Developers behind Dridex have launched a major new version of the banking trojan, one that employs a unique method for injecting malicious code based on a novel technique called AtomBombing. The new version of the Dridex banking malware has been detected targeting European banks and is expected to be used against U.S. financial institutions in the coming months. Dridex 4 incorporates the usual range of software improvements that we have come to expect from professionally maintained malware -- but it is also the first major malware to have adopted the new code injection technique known as 'AtomBombing'.
Security researchers believe that Dridex is part of the growing trend towards file-less malware which will allow the malware to protect itself from the prying eyes of security researchers.
In January, the largest NHS trust in Britain went under a “major” cyberattack, with thousands of sensitive files compromised and pathology systems taken offline.The malware attack, which forced parts of the UK's largest hospital group offline, has now been blamed on a new form of malware, which bypassed antivirus software and infected the network.
There's no indication of how exactly the malware, which the trust said previously was a Trojan, managed to infiltrate hospital systems. Barts Health NHS Trust is currently carrying out a "serious incident investigation" into the event.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.