Take the pledge to vote

For a better tommorow#AajSawaroApnaKal
  • I agree to receive emails from News18

  • I promise to vote in this year's elections no matter what the odds are.
  • Please check above checkbox.


Thank you for
taking the pledge

Vote responsibly as each vote counts
and makes a diffrence


Issued in public interest by HDFC Life. HDFC Life Insurance Company Limited (Formerly HDFC Standard Life Insurance Company Limited) (“HDFC Life”). CIN: L65110MH2000PLC128245, IRDAI Reg. No. 101 . The name/letters "HDFC" in the name/logo of the company belongs to Housing Development Finance Corporation Limited ("HDFC Limited") and is used by HDFC Life under an agreement entered into with HDFC Limited. ARN EU/04/19/13618
  • Municipal Corporations 9/10
  • TRS 8
  • INC 0
  • BJP 1
  • AIMIM 0
  • OTH 0
  • TRS 96
  • INC 9
  • BJP 3
  • AIMIM 2
  • OTH 4
Refresh Data
News18 » Tech
1-min read

A Spyware in ATM Machines and Company Servers Can Steal Your Money and Data

According to Kaspersky researcher Konstantin Zykov, the tool is an evolution of the older ATMDtrack tool created by cybercrime consortium, Lazarus.

Shouvik Das | News18.com@distantvicinity

Updated:September 27, 2019, 12:32 PM IST
facebookTwitter Pocket whatsapp
A Spyware in ATM Machines and Company Servers Can Steal Your Money and Data
Image for representation.

Cybersecurity firm Kaspersky has reported the discovery of a new spyware tool that seemingly affects a large number of Indian firms in the financial and research space. The tool, which is called Dtrack, is an evolution of a previously reported tool, ATMDtrack, which was said to be in widespread use to target automated teller machines (ATMs) across India. With a code sequence that is identical to the latter financial theft tool, Dtrack is now believed to be actively targeting a large number of Indian institutions, in order to steal confidential data, personal details of employees and closed conversations, as well as remotely downloading malicious tools, tracking key logs and monitoring IP (internet protocol) traffic.

The operation of the Dtrack espionage and theft tool, according to Kaspersky security researcher Konstantin Zykov, is a rather unusual one for a coordinated cybercrime group such as Lazarus, which is suspected to be a state-sponsored entity. Touching upon this, Zykov states, “It focuses on conducting cyber espionage or sabotage operations. Yet, it has also been found to influence attacks that are clearly aimed at stealing money. The latter is quite unique for such a high profile threat actor because generally, other actors do not have financial motivations in their operations.”

However, Zykov believes that these characteristics make the Lazarus group’s operation of the Dtrack remote access tool even more dangerous. He says, “The vast amount of Dtrack samples we found demonstrate how Lazarus is one of the most active APT groups, constantly developing and evolving threats in a bid to affect large-scale industries. Their successful execution of Dtrack RAT proves that even when a threat seems to disappear, it can be resurrected in a different guise to attack new targets.”

While Kaspersky has not disclosed the identities of any affected entity, the company says that the firms in question typically have “weak network security policies and password standards, while also failing to track traffic across the organization.” This would seemingly cover a large number of companies, which often fail to prioritise cybersecurity as an area of investment, due to budget constraints and lack of initiatives.

Get the best of News18 delivered to your inbox - subscribe to News18 Daybreak. Follow News18.com on Twitter, Instagram, Facebook, Telegram, TikTok and on YouTube, and stay in the know with what's happening in the world around you – in real time.

| Edited by: ---
Read full article
Next Story
Next Story

facebookTwitter Pocket whatsapp

Live TV

Countdown To Elections Results
To Assembly Elections 2018 Results