RSS Alerts

Share

More services

Related Stories

  • Trusteer detects rapid spread of new polymorphic Zeus trojan
    Trusteer says it has detected a completely new version of the Zeus password stealing trojan that has been designed to steal online banking credentials.
  • New Zeus attack uses Adobe design flaw
    The Zeus botnet continues to spread graciously, according to new data collected by Websense – and other researchers say that it is exploring a recently discovered design flaw in the Adobe PDF file format.
  • Provider takedown guts Zeus infrastructure
    Yet another botnet suffered severe losses to its functionality this week, in what appears to be a growing campaign among the white hat community to take down these virulent networks. Troyak-AS, which was the upstream provider for the six worst Zeus hosting ISPs, has been taken offline.
  • Zeus gang hits 75 000 computers
    The same criminal gang that targeted government and military computers with its malware has also infected 75 000 computers in almost 200 countries with a virulent strain of the banking trojan, according to research from network monitoring company NetWitness.
  • Military and intelligence personnel targeted again by Zeus trojan
    Some rather industrious spammers have targeted military and intelligence employees for the second time in a week. But this time they used the pretense of the previous attack in an attempt to deliver the Zeus trojan.

Top 5 Stories

News

Scam targets Visa, MasterCard online verification services

14 July 2010

Trusteer recently warned that the Zeus (Zbot) financial malware is targeting online banking customers of 15 leading US financial institutions by exploiting two trusted credit card security programs – Verified by Visa and MasterCard SecureCode.

According to the internet security vendor, after users have initiated a secure online banking session, the Zbot injects into the browser a copy of each services’ enrollment screen, subsequently making off with all sorts of personal and banking data.

This version of Zeus, said Trusteer, attempts to trick online banking customers into surrendering their personal and credit/debit card data by claiming new FDIC rules require that they enroll in either Verified by Visa or MasterCard SecureCode to protect their accounts.

This type of scam is of particular concern, Infosecurity notes, because Trusteer’s own research shows that the majority (55%) of computers infected by Zeus malware, also known as Zbot, have active and up-to-date anti-virus protection.

The company’s data also show that based on information gathered from 3 million machines in the UK and North America, the poor detection rate has led to Zeus infection on one of every 100 computers.
 

This article is featured in:
Internet and Network Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012