(also Bugat, Cridex)
Dridex attack definition
Dridex is a highly potent malware that infiltrates Windows-based computers to steal valuable financial information. It spreads through phishing emails, malware-infected websites, drive-by downloads, and infected USB drives.
Phishing emails trick users into opening attachments or clicking links, resulting in the victim unknowingly downloading Dridex onto their computer.
Once installed, Dridex can steal banking credentials, credit card numbers, and PINs. It can also control infected computers remotely, enabling attackers to launch additional harmful attacks.
How does Dridex infect your computer?
- Phishing emails: Dridex spreads through emails with malicious attachments or links. Opening them installs Dridex on the computer.
- Malware-infected websites: Visiting such websites automatically downloads and installs Dridex malware.
- Drive-by downloads: Covert downloads that occur when users inadvertently visit compromised websites, installing the malware.
- USB drives: Inserting an infected USB drive executes Dridex on the computer.
Protecting against Dridex
- Use a reputable security solution with anti-malware and anti-phishing features.
- Keep all software, including operating systems, browsers, and applications, up to date.
- Exercise caution when opening emails from unknown senders or clicking on email links.
- Employ strong passwords and change them regularly.
- Avoid visiting untrusted websites because they may be infected with malware.
- Scan USB drives before use, especially if you don’t know their origin.
- Educate employees about the risks of malware and phishing attacks.