According to Computerworld, the Zeus botnet has found a new home in Amazon’s EC2 cloud computing infrastructure. Don DeBolt, director of threat research with HCL Technologies, says this is the first time Amazon Web Services’ cloud infrastructure has been used for this kind of illegal activity.
DeBolt won’t say which Web site was used to hack into Amazon’s cloud, but he says the Zeus software has now been removed.
Hackers use Zeus, a password stealing Trojan, for a variety of attacks. For example, Zeus was involved in a spam campaign that targeted the National Automated Clearing House Association. It has also been used for Facebook attacks.