Friday, April 10, 2015
Dyre Wolf is no 2FA killer, say security professionals
The so-called 'Dyre Wolf' campaign uses a multi-layered approach to evade detection and gain account access. These include injecting new fillable data fields into online forms on target legitimate web pages, redirects to proxy clone pages and pop-ups to lure targets in the first place. What was arguably most alarming, however, was that apparently Dyre Wolf could also defeat two factor authentication (2FA) mechanisms. Reading the news stories that emerged it appeared that the malware was technically sophisticated enough to bypass 2FA, which would be very worrying indeed. Further investigation revealed that 2FA is, in fact, far from dead in the water and actually Dyre Wolf is not as clever as you might think.