Malware Update: Svpeng and Dyreza NOT afftecting South Carolina Federal's mobile app
Tuesday, June 24, 2014
There is a new type of malware, originating from Russia that is now starting to impact Mobile Banking platforms in the United States. Svpeng or Dyreza, like most forms of malware, target the end user (member). These forms of malware look for specific mobile banking applications on the user’s phone, locks the application and demands a monetary amount be sent in order to unlock it.
South Carolina Federal Credit Union uses Digital Insight, which is not affected by either malware in its present version.
Svpeng is targeted at the following financial institutions: USAA, Citigroup, American Express, Wells Fargo, Bank of America, TD Bank, JPMorgan Chase, BB&T and Regions.
Dyreza is also targeted at a small number of financial institutions including Bank of America, Natwest, Citibank, RBS and Ulsterbank.
Like all malware, Svpeng and Dyreza prey on end users. The best defense against malware is an educated end user.
Digital Insight recommends end users employ security best practices to proactively mitigate malware threats like Svpeng and Dyreza. These best practices include:
- Install an antivirus app on both your personal computer and your mobile device and keep it updated.
- Avoid installing Android apps from third-party websites or unreliable sources,
- Read the permissions requested by every application before installing.
- Perform regular backups of data stored in Android devices.
- Protect devices with passwords.
- Don't view or share personal information over a public wi-fi network.