Zeus Returns to Wreak Havoc

I haven't talked about the Zeus botnet lately. There was a period of time when I couldn't go a day without reading about Zeus or without getting an email with some news about the botnet.

By  Sue Poremba | Sep 15, 2011
Print ArticleEmail Article
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn
I didn't know if it was because Zeus had moved past its spot in the news cycle (and it has been a very busy security-related news cycle) or if Zeus had gone relatively quiet.

Well, whatever the reason, Zeus -- or a variant of it -- has returned. In Fortinet's monthly threat landscape report, it was announced that a Zeus botnet variant was second in monthly malware activity due to its source code being cracked and leaked. According to Derek Manky, senior security strategist at Fortinet:

The surge in Zeus activity doesn't surprise us given the botnet's popularity and the fact that its source code was hacked and subsequently leaked to the public last May. We believe it's highly likely that we will continue to see Zeus and SpyEye -- another popular botnet whose source code was also recently cracked and leaked publicly -- to spread in waves in the coming months.

Oh joy.

Kaspersky Lab added that the Russian-speaking cybercriminals created a clone of Zeus that was quite popular with cybercriminals over the summer, selling for $600-$1800 in the United States. Kaspersky Lab's website said of the botnet, known as Ice IX:

One of Ice IX's most remarkable innovations is the altered botnet control web module which allows cybercriminals to use legitimate hosting services instead of costly bulletproof servers maintained by the cybercriminal community.

This will likely mean an increase of attacks involving online financial transactions.

Zeus has always been troublesome, but it appears that the new variant of the botnet could be anti-virus software proof.

I was happy that I didn't have to write about Zeus for a long time, but it looks like the botnet has returned to my radar for some time to come.

Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter
Helpful Links

  • Yankee Group Mobile WAN Optimization Report

    Mobile work continues to evolve. Your organization must keep up with the demands of its mobile workforce. This report introduces the concept of mobile WAN optimization and provides three case studies including RCM, PRTM and Einstein that highlight how this emerging technology can help IT departments achieve what previously appeared to be conflicting goals. Read >

  • Network Security Resources

    More threats than ever before pose a danger to today's enterprise network. Get the latest tips and intel on the newest risks in our guide to network security resources. Read >

  • Extreme Savings: Cutting Costs with WAN Optimization

    Did you know it's possible to cut IT costs without impacting day-to-day IT operations? In fact, when you download this whitepaper from Riverbed on cost-savings through WAN optimization, you'll discover how businesses of all different sizes have realized a return on investment in just a few months through significant hard cost savings in areas such as bandwidth reduction and IT consolidation. It's called Extreme Savings and its only from Riverbed. Read >