Security group CSIS has warned internet users to watch out for a Remote Access Trojan (RAT) called Dyreza, which is targeting banks.
Dyreza is the new Trojan in town according to a blog from CSIS, and carries the same sort of risks as GoZeus, the malware that the UK National Crime Agency has been fighting this summer.
CSIS said it has verified five targets being hit by Dyreza: Bank of America, NatWest, Citibank, RBS and Ulster Bank. It added that the primary target seems to be the UK.
Online bankers should watch out for engineered messages that claim to be from a legitimate source but are not, it warns.
The method is apparently random, and infection attempts take a range of forms. Once interacted with these messages can install software on a user's machine.
CSIS said in the blog: "We have been analysing a new piece of banking malware, which is targeting some major online banking services. The code is designed to work similar to Zeus and as most online banking threats it supports browser hooking for Internet Explorer, Chrome and Firefox and harvests data at any point an infected user connects to the targets specified in the malware."
CSIS said it is expecting a new range of attacks and said that they would likely come as fake software update alerts.
"Our intel shows that the group behind these attacks is likely to push or distribute a new campaign as a Flash Player update. We believe this is a new banker Trojan family and not yet another offspring from the Zeus source code."
Microsoft comes up with a new way to foist its unloved and little used Edge web browser on people
Insider claims Cambridge Analytica used academic app to filch Facebook data of 50 million users
Is the Samsung Galaxy S9+ worth its high price?