Zeus Strikes Again: Customers of Global Financial Institution Hit by Cybercrime

M86 Security Labs uncovered a cyber-attack against the customers of a well-known global financial institution. Since July 5, the attack compromised more than 3,000 accounts and illegally transferred US $889,000 via money mules, according to log information from the affected command and control servers.

The cybercriminals who coordinated this man-in-the-browser attack used the Eleonore and Phoenix exploit kits to infect systems with the latest version of the notorious Zeus Trojan.

The scale and success of this attack reveals how sophisticated cybercrime techniques have become. Now, Zeus v3, the latest iteration of the Trojan first identified by M86 Security Labs, acts as a data collector and performs illegal online banking transactions.

Learn More about Zeus v3

Webinar

If you missed our August 25, 2010 Webinar, "Customers of Global Financial Institution Hit by Cybercrime - Zeus Strikes Again!", you can listen to the recording or download the presentation.

M86 Security Labs Report

"Cybercriminals Target Online Banking Customers: Use Trojan and Exploit Kits to Steal Funds from Major UK
Financial Institution"
Get details on the architecture, business model, tools and methods used by cybercriminals to accomplish this attack.
Read the report that first exposed the attack

 

Media Coverage

U.K. Bank Customers Attacked by Computer Virus
Fox Business News: Ashley Webster on U.K. banking customers who had their online accounts emptied by a virus called Zeus.

Is Zeus v3 Virus a Threat to U.S.?
Fox Business News: M86 Vice President Bradley Anstis and cybercrime expert Douglas Salane discuss how the virus was discovered and whether the government can protect Americans from having their bank accounts wiped out.