CONFERENCE Now Live: CISO Forum Virtual Summit - Join Event In-Progress
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Zeus Malware Staging a Massive Comeback, Says Trend Micro

Security firm Trend Micro has observed a massive spike in attempted malware infections coming from the Zeus family of Trojans. This spike, the company says, further affirms their warnings from their 2013 predictions that what was old will once again become new.

Security firm Trend Micro has observed a massive spike in attempted malware infections coming from the Zeus family of Trojans. This spike, the company says, further affirms their warnings from their 2013 predictions that what was old will once again become new.

In January, the Zeus family was virtually non-existent, thanks largely to Microsoft’s campaign to eradicate the Trojan from the Web. The software giant led the charge by seizing command and control servers in March of 2012, essentially crippling key components of the malware’s infrastructure. Despite that, the criminals who controlled Zeus kept producing – but failed to establish the hold the malware family once had on the Internet as a whole.

However, in February of this year, Trend Micro says that Zeus returned in force. New variants surged early on that month, and the number of new infection attempts continued an upward trend for the remainder of the monitoring period, which ended May 7. The malware itself maintains the same core functions, designed to steal information and credentials (finance-based data for example; such as banking usernames and passwords), but new variants are also altering the Windows HOST file in order to keep a stronger hold on the victim’s system.

“These ZBOT versions modify the Windows hosts file to prevent users from accessing security-related websites,” Trend says in a blog post.

“…old threats like ZBOT can always make a comeback because cybercriminals profit from these. Peddling stolen banking and other personal information from users is a lucrative business in the underground market. Plus, these crooks can use your login credentials to initiate transactions in your account without your consent. Thus, it is important to be careful in opening email messages or clicking links. Bookmark trusted sites and avoid visiting unknown ones.”

Additional details on the research from Trend Micro are available online

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization's data security and resilience.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Secure enterprise browser provider Menlo Security has appointed Bill Robbins as President.

Erik Rolf has joined Booz Allen Hamilton as the Business Information Security Officer (BISO) of Commercial Sector.

Gant Redmon has joined Trustle as its new Chief Executive Officer and Board Director.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.