Zeus2.0僵尸病毒已经开始在网络上肆虐:目标瞄准英国
一家网络安全公司Trusteer宣称他们在网络上发现Zeus僵尸病毒的第二版已经开始传播。本周早些时候,我们还曾报道过这种病毒的消息,不过当时我们得到消息称该版本的病毒还处于Beta测试阶段,现在看来我们当时的结论下得太早了。
Trusteer认为,这个由东欧人控制的僵尸网络病毒攻击的主要目标是获取与英国有关的财经信息,目前为止被这个病毒感染的”肉鸡“数目已经达到了10万台左右,其中有98%的”肉鸡“均位于英国地区。Trusteer并已查明这个僵尸病毒主要用于窃取用户的信用卡卡号,网银登录帐号与密码等等信息。
Trusteer公司的CEO Mickey Boodaei声称他的公司发现Zeus2.0病毒已经在网络上出现了6个月之久,不过这次发现的则更接近与正式版。他并宣称公司已经摸清了这个僵尸病毒的脉络,这种病毒主要是利用伪装的用户界面来盗取信用卡号等信息,他们发现了大量这样的伪装型站点,其中不少甚至伪装成了谷歌Gmail网站的样子。他还透露说这种僵尸病毒可以获取用户的很多详细信息,除了网银帐号密码之外,甚至还能窃取用户的工作单位地址,工作职位等等信息。
他总结说:”这次攻击的目标非常明确,就是瞄着英国市场的金融机关和公民来的。“
CNBeta编译
引文原文:
INSECURITY FIRM Trusteer has found the first instance of the Zeus botnet version 2 out in the wild.
Earlier this week we said that this next version of the gittish botnet was still in beta and was only being trialed. However we might have spoken too soon as Trusteer reckons to have found what it calls a ‘significant’ instance.
Trusteer reckons that the botnet, which is operated and controlled from Eastern Europe, is after financial information in the UK, and has a massive zombie army of 100,000 infected computers as its footsoldiers – 98 per cent of which are in the UK.
Already Trusteer has been able to ascertain that the botnet is sniffing up things like credit and debit card numbers, banking website login IDs and passwords, bank statements, more passwords, FTP accounts and passwords, website and user certificates, Internet users’ web cookies, the kitchen sink and did we mention passwords?
Mickey Boodaei, CEO of Trusteer said that the firm had been seeing Zeus 2.0 being used for about six months, but added that this was the first ‘pure’ one.
Boodaei said that his firm had been able to drill deep down into the botnet and discovered a user interface that lets the controllers do things like search for banks by name or snarf up mass collections of emails through a ‘Google-like’ interface.
He explained that the collection of information was very specific, and included the usual suspects such as logins and passwords. However, it is far more comprehensive than this and collects other things as well, like place of work and type of job.
“It’s very focused,” he added, “they are targeting the UK market, its financial institutions and its citizens.” µ
什么东西也有