Zeus botnet threat hits UK

The threat of the Zeus 2.0

According to security outfit Truster, a Zeus version 2 botnet controlling more than 100,000 computers to steal online banking and card details has been unleashed in the UK.

Truster reports that the botnet is being operated and controlled from Eastern Europe, where criminal gangs will be using the malware to steal online account IDs, login information to banks, credit and debit card numbers, bank statements and other data.

The security firm also said that the Zeus botnet had been discovered after they had gained access to its drop servers and command and control centre which contained the stolen information. Once the extent of it was discovered, the details were passed to the UK authorities.

Stealing login details

Speaking about the malware threat to Finextra, Amit Klein, CTO of Trusteer said, "This is just one out of many Zeus 2 botnets operating all over the world. What is especially worrying is that this botnet doesn't just stop at user IDs and passwords. By harvesting client side certificates and cookies, the cyber-criminals can extract a lot of extra information on the user, that can be used to augment their illegal access to those users' online accounts."

It is believed that the Zeus botnet is the latest example of ‘regional malware', something security firms say is a growing trend. It is where cyber-criminals operate targeted and segmented attacks on users, steal data and revenue from the area's bank users and then move onto another area.

Mickey Boodaei, chief executive at Trusteer, said that the botnet specifically targets UK citizens and their financial information, "It's very focused. It's targeting the UK market, its financial institutions and its citizens,"

Truster has reportedly spent the last six months studying this particular form of botnet.

Relevant articles:

RBS fined for IT system failure | European Climate Exchange site hacked | Bank of Ireland’s ATM glitch

Like this article? Get the RSS feed: