Zeus returns: FBI warns of 'Gameover' ID-theft malware
Summary: The newest strain of the notorious Zeus malware family is capable of defeating common methods of user authentication employed by financial institutions.
A new variant of the notorious Zeus identity-theft Trojan is making the rounds and the Federal Bureau of Investigations (FBI) says it is capable of defeating common methods of user authentication employed by financial institutions.
The latest strain of the ID-theft malware, called Gameover, begins as a phishing scheme with spam e-mails -- purportedly from the National Automated Clearing House Association (NACHA), the Federal Reserve Bank, or the Federal Deposit Insurance Corporation (FDIC) -- that leads to malware infection and eventual access to the victim's bank account.
From the FBI warning:
The malware is appropriately called “Gameover” because once it’s on your computer, it can steal usernames and passwords and defeat common methods of user authentication employed by financial institutions. And once the crooks get into your bank account, it’s definitely “game over.”
Gameover is a newer variant of the Zeus malware, which was created several years ago and specifically targeted banking information.
The FBI said the phishing lures typically includes a link in the e-mail that goes to a phony website. "Once you’re there, you inadvertently download the Gameover malware, which promptly infects your computer and steals your banking information," it warned.
The FBI said recent investigations have shown that some of the funds stolen from bank accounts go towards the purchase of precious stones and expensive watches from high-end jewelry stores.
The criminals contact these jewelry stores, tell them what they’d like to buy, and promise they will wire the money the next day. So the next day, a person involved in the money laundering aspect of the crime—called a “money mule”—comes into the store to pick up the merchandise. After verifying that the money is in the store’s account, the jewelry is turned over to the mule, who then gives the items to the organizers of the scheme or converts them for cash and uses money transfer services to launder the funds.
Here's a good look at how the scheme works:
(Click chart for full size)
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
Thank You
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
It's encrypted even if it is saved in a browser cookie, which on reputable sites it is not.
Something tells me this is ANOTHER case of 'not likely to bother the savvy internet user' who realizes that NO e-mails equivalent to the ones listed are reputable and to delete all of them.
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
You don't have to look as far as the cookies. Most people have their browser store the usernames and passwords for all the sites they visit. That info is easily accessible through the browser. I almost gave a co-worker a heart attack by showing him his stored ebay, paypal and banking username/passwords.
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
I don't know why he would have a heart attack and most browsers encrypt/password protect if you ask them to your logins.
That is what Chrome does. Firefox does that as well. I believe it's iE7+ for the win.
not good ones
dsfds
Wholesale USB Flash Drive http://www.chinawholesaletown.com/wholesale-Ring-Opener/ Safety Suppliers Jute Bag
Wholesale Camera http://www.chinawholesaletown.com/wholesale-Alcohol-Tester/ Wholesale Bag Wholesale Racks
Wholesale Mug http://www.chinawholesaletown.com/wholesale-Golf-Putting-Set/ Lunch Box Sport Items
Wholesale Scissors http://www.chinawholesaletown.com/wholesale-Pill-Box-Keychain/ Wholesale Calculator Decision Maker
Garden Decorations http://www.chinawholesaletown.com/wholesale-Silicone-Bottle-Opener/ Wholesale Poncho Wholesale Carabiner
Heating Products http://www.chinawholesaletown.com/wholesale-Bottle-Carriers/ Wholesale Album Wholesale Poncho
Wholesale Helmet http://www.chinawholesaletown.com/wholesale-Lighter-Parts/ Medicine Instrument Giveaway Material
Safety Suppliers http://www.chinawholesaletown.com/wholesale-Luggage-Gripper/ Wholesale Fan Stuffed Animals
Promotional Gifts http://www.chinawholesaletown.com/wholesale-Shaker-Bottle/ Silicone Bakeware Wholesale Keychain
Wholesale Bedding http://www.chinawholesaletown.com/wholesale-Novelty-Telephone/ Wholesale Cooler Freezer Mug
Health Care Products http://www.chinawholesaletown.com/wholesale-LED-Light-Bottle-Opener/ Wholesale Banner Wholesale Clap Hands
Recorder Pen http://www.chinawholesaletown.com/wholesale-Abacus/ Wholesale Wallet Wholesale Memory Card
Spare Tire Cover http://www.chinawholesaletown.com/wholesale-Teeth-whitening-Pen/ Wholesale Apron Wholesale Radio
Ice Bottle http://www.chinawholesaletown.com/wholesale-Highlighter-Pen/ Gift Box Entertainment Supplies
Wholesale Calculator http://www.chinawholesaletown.com/wholesale-Collapsible-Water-Bottle/ Pet Waste Bag Dispenser Coin Bank
Wholesale Tie http://www.chinawholesaletown.com/wholesale-Fruitpick/ Promotional Gifts Muslim Products
Wholesale Shoe http://www.chinawholesaletown.com/wholesale-Clap-Hands/ Industrial Supplies Highlighter Pen
Wholesale Cup http://www.chinawholesaletown.com/wholesale-Silicone-Watch/ Fishing Supplies Wholesale USB Flash Drive
Fishing Supplies http://www.chinawholesaletown.com/wholesale-Pocket-Screwdriver/ Coin Bank Wholesale T-Shirts
Notepad Calculator http://www.chinawholesaletown.com/wholesale-Water-Filter-Bottle/ Crystal Gifts Wholesale Towel
Permanent Match Lighter http://www.chinawholesaletown.com/wholesale-Silicone-Bakeware/ Wholesale Vase Beauty Equipment
Wholesale Coaster http://www.chinawholesaletown.com/wholesale-Wine-Bucket/ Wedding Favors Perpetual Calendar
Wholesale Clocks http://www.chinawholesaletown.com/wholesale-Sunglasses/ Wholesale Earphone Baby Products Suppliers
Voice Recorder http://www.chinawholesaletown.com/wholesale-Level-Ruler---Digital-Level/ Baby Products Suppliers Wholesale Shoe
Wholesale Belt http://www.chinawholesaletown.com/wholesale-Metal-Cooler-Box/ Ice Players Stick Wholesale Thermometer
Wine Pouch http://www.chinawholesaletown.com/wholesale-Wedding-Coaster/ Wholesale Clap Hands Wholesale Glass
Writing Instrument http://www.chinawholesaletown.com/wholesale-Muslim-Caps/ Lighting Products Wholesale Wallet
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
Oh, my...Dude, you seriously need to change your poser nickname. You obviously don't have a clue.
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
Google 'Charlie Miller' and see what he says about how 'safe' your MAC is
hint: it's easier to hack than Windows 7
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
You failed to mention from easier to hack with physical access..
Hack through exploitation its still safer.. As windows fans put it due to market share...
RE: Zeus returns: FBI warns of 'Gameover' ID-theft malware
No. Charlie's successes have been based on social engineering type attacks, which plenty of Apple users proved they are susceptible to back with MacDefender.
No Physical access required