Financial Firms Targeted With New Type of Backdoor: Report

2020-02-07 15:49

FireEye researchers are tracking a hacker campaign using a new type of backdoor they call "Minebridge" that has primarily been targeting U.S. financial firms this year.

The campaign, which appears to have started around Jan. 7, involves planting the Minebridge backdoor into corporate networks to deliver other malware and allow attackers to map the infrastructure, according to a new FireEye report.

While most of the targets of the Minebridge campaign are U.S.-based financial firms, some of the phishing emails have also been sent to South Korean organizations, including a marketing agency, the report finds.

In the first campaign, which started about Jan. 7, the attackers targeted U.S. financial firms using an email with the subject line "Tax Return File," and some wording taken from the U.S. Internal Revenue Service in the body of the message, according to the report.

On Jan. 28, a third phishing campaign again targeted U.S. financial firms with messages that appeared to come from someone with financial experience looking for a job, according to the report.

News URL

https://www.inforisktoday.com/financial-firms-targeted-new-type-backdoor-report-a-13699

#backdoor #financial #report