Malware by traditional mail

Presented at ToorCon San Diego 14 (2012), Oct. 21, 2012, 11:30 a.m. (20 minutes).

This presentation describes one case happened the fall of 2011 in Russia. But this could happen in any other country and it can happen in the future. It is long time an open secret that the attackers create malicious programs not just for fun but for the enrichment. In this regard, users of DBS is one of the most attractive target for cybercriminals. Despite the same goal - to get the money of users authors have created malicious software go different ways. Some go through the development of new technological methods to overcome the defense and looking for new vulnerabilities in software, but there are those who use social engineering techniques that give not less effective results in attacks on banking users.

In October 2011, customers of several major banks of Russia received in the mail envelopes that contained a CD with software and instructions for use. Information about this incident was published on the Internet. But in this presentation are disclosed technical details of the attack, describes the contents of CD.


Presenters:

  • Konstantin Sapronov
    Deputy Head of Global Emergency Response Team. Kaspersky Lab. Konstantin joined Kaspersky Lab in 2000. He has been in his current position since August 2011 as Deputy Head of Global Emergency Response Team. His previous position was group manager of Virus Lab China since 2007 and has been responsible for establishing and developing the Virus Lab at Kaspersky Lab's office in China. Prior to this he worked as a virus analyst and head of the Non-Intel Platform Group in the Virus Lab at Kaspersky Lab's HQ in Moscow, specializing in reverse engineering and the analysis of malware, exploits and vulnerabilities. Konstantin is the author of several analytical articles on malware for UNIX and other information security topics. Konstantin holds degrees from the Moscow State University of Economics, Statistics and Information Technology and the Moscow Power Engineering Institute (Technical University).

Similar Presentations: