Cybercrooks target finance dept employees in India, US and UK
New Delhi, Feb 7: Cybercriminals are targeting small businesses in India, the UK and the US, sending infected mails to employees responsible for accounts and fund transfers to steal money from affected organisations, security software solutions provider Symantec said.
"Financially-motivated attackers are sending social- engineering e-mails to small and medium businesses (SMBs) in India, the UK and the US in order to deliver Backdoor.Breut and Trojan.Nancrat," Symantec said in a blog.
Attackers have been spreading two families of remote access Trojans (RATs) to small businesses in India (56 per cent), the US (23 per cent) and the UK (21 per cent) since the start of 2015, it added.
The attackers don't focus on specific industries or organisations, working to gain access to whichever business they can, and if they can't compromise a company, they move on to another, Symantec said.
Symantec said the attackers operate with few resources, rely on social engineering rather than exploits, and use two publicly available RATs.
"The campaign has been occurring since at least early 2015. For most of the year, the targets were mainly located in India, while some others were in the US and other regions," it said.
However, activity in India and the US has dropped in the past few months while the number of infections in the UK has increased, Symantec added. The e-mails include archive file attachments, usually with the .zip extensions.
If the user opens the file, their computer is infected and gives the attackers complete control of the victim's computer.
Through these infections, the attackers can access the webcam and microphone, log keystrokes, steal files and passwords.
Symantec said users should be careful while opening attachments or clicking on links in suspicious e-mail messages.
Also, users should avoid providing any personal information while answering an e-mail and never enter personal information in a pop-up web page.
Besides, keep security software up to date and if the user is uncertain about an e-mail's legitimacy, they should contact the internal IT department, Symantec said.
PTI
-
Gold Silver Rate Today, 1 April 2026: City-Wise Prices Rise Sharply, MCX Gold And Silver Surge -
Gold Silver Rate Today, 30 March 2026: City-Wise Prices, MCX Update On 24K Gold, 22K Gold And Silver -
April 1 Rule Changes: PAN, New Tax Law, ATM, FASTag, Cards to Impact Millions, What’s Changing? -
Gold Silver Rate Today, 31 March 2026: City-Wise Prices, MCX Trend As Gold Rises And Silver Slips -
IPL 2026 CSK vs RR: Will Sanju Samson Open Batting For Chennai Super Kings? -
Punjab Schools Top National Survey, Surpass Kerala as Education Budget Hits ₹19,279 Crore: CM Bhagwant Mann -
Rupee Falls to Fresh Record Low of 95.14 per Dollar Amid RBI FX Rule Changes -
Hyderabad Gold Silver Rate Today, 30 March 2026: Check Fresh 24K, 22K, 18K Gold And Silver Prices In City -
Spain Rejects US War Flights, Closes Airspace To Aircraft Linked To Iran Operation -
Indian Worker Killed In Kuwait After Iranian Strike Hits Power Plant Amid Rising Gulf Tensions -
Mahavir Jayanti 2026: 10+ Wishes, Teachings, And The Meaning Of This Sacred Day -
Kim Jong Un Oversees New Solid-Fuel Missile Engine Test, Claims Capability To Reach US Mainland
Click it and Unblock the Notifications
Sign in with Google