The Jersey Financial Services Commission (JFSC) has issued a warning to advise local residents and businesses of spam emails associated with the Dridex ecrime campaign, which uses Microsoft Office documents containing malicious macro code to infect computers.
Dridex is typically disguised as an invoice and emailed to victims, and the malware virus relies on tricking victims into installing it on their machines, which enables the cyber-attackers to harvest victims’ online banking details and steal from these accounts.
A large volume of the infected emails are being received from the following addresses. (Other addresses may be distributing the virus):
- info@quickhostuk.com
- info@norfolkdance.co.uk
- chelsee@ucblinds.co.uk
Barry Faudemer, Director of Enforcement offered the following advice:
“Unfortunately, due to the nature of the virus constantly changing, the majority of anti-virus software is not able to detect nor protect users. Therefore, the JFSC is warning people to be extremely vigilant. Do not open unexpected email attachments and delete any suspicious emails that may contain the virus.”
For further information:
http://researchcenter.paloaltonetworks.com/2015/10/dridex-is-back-and-targeting-the-uk
http://blog.dynamoo.com/2015/10/malware-spam-please-print-chelsee-gee.html
http://www.theregister.co.uk/2015/10/02/dangerous_resurgent_banking_malware_hits_uk/