A blog about generally interesting infosec stuff by employees of SecQuest Information Security https://www.secquest.co.uk

Friday, 9 May 2014

Lloyds Bank "PCI DSS" Malware

In common with the Facebook scam post earlier we don't usually bother blogging about malware and phishing emails as they're usually handled well by companies and are pretty common.. this email was a bit more interesting.

Had an email from Lloyds Bank <pciportal@lloydsbankcardnetpcidss.com> entitled PCI DSS Compliance Programme:
Looks pretty legit.. PCI too, that's a security thing isn't it!  The attachment looked like this:

So PDF icon with a .scr suffix. That's a Windows screensaver file which will run the code the same as a .exe when it's double clicked (for our younger viewers).

Basically it's a known piece of malware with reasonable detection according to Virus Total:


Interesting all the same, obviously targeted at business rather than end user targets. Be vigilant!

3 comments:

  1. Lloyd’s bank PSI DSS malware is a post that is containing the blog of various aspect and point of terms in these. The complete certificate is given with the multiple essay writing service uk as per the signature and affiliation of multiple points and objectives.

    ReplyDelete
  2. Such viruses are seriously such a curse. I have faced such a hard time with all these viruses and this one time I almost lost all of my data for academic writing services because I accidentally allowed a virus in my computer by clicking on an ad and that time I did not have anti-virus in my computer. So, I should suggest everyone have an antivirus installed on their computers.

    ReplyDelete
  3. LIoyds bank PCI DSS malware is a technical assignment and the relevancy with the proper execution of the tasks. The official letter from the bank is for the payment card industry data with the standards to Jamaica Ocean View Villa compliance with the management server.

    ReplyDelete