Zeus threat increases as detection rates fall, warns Trusteer


Zeus threat increases as detection rates fall, warns Trusteer

Warwick Ashford

Secure browsing services firm Trusteer has warned of the rising tide of Zeus Trojan attacks after IT security site TechCrunch Europe unwittingly passed on the infection.

One of the Javascript files of the TechCrunch site was modified by hackers to open an IFRAME, which in turn delivered a PDF file with a Zeus infection.

"The bad news about this infection, which lasted several hours, is that just two of 43 IT security applications can detect this malware variant, according to Virus Total," said Mickey Boodaei, chief executive at Trusteer.

"The TechCrunch fiasco is all part of the rising problem of Zeus infections," he said.

According to Boodaei, the number of users who are infected with Zeus has increased over the past month due to aggressive distribution attempts made by fraudsters.

"The two leading infection routes are compromised websites that serve up a Zeus infection to visitors and spammed e-mails that include Zeus as an attachment or link," he said.

At the same time that the quantity and quality of these attacks have increased, the detection rate of anti-virus products is decreasing, said Boodaei.

"We estimate that fraud losses due to Zeus specifically are going to triple in 2011 due to the increase in distribution and lack of coverage by antivirus suppliers. This latest infection of the TechCrunch Web portal is just the tip of the iceberg," he said.

Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy