Zeus Trojan returns: Facebook being used to spread the infection

[anuseems]

The infamous Zeus malware has once again resurfaced, but this time its using Facebook to further its crime spree. First detected in 2007, Zeus has infected millions of computers over the past six years. Despite the efforts of numerous security firms to combat the Trojan horse, it has only gotten stronger with age.

Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent.

Eric Feinberg, the founder of Fans Against Kounterfeit Enterprise (FAKE), believes that bogus Facebook pages are now being used to spread the malware. One such page was called Bring the N.F.L to Los Angeles. After asking a security team to analyze the shady links that were posted throughout the group, Feinberg's theories were proven to be correct.

The big concern is how little Facebook is doing to combat the threat. In response to Feinbergs outreach to the social media giant, Facebook suggested that users should take matters into their own hands by signing up for scanners that can identify and remove the Trojan. According to The New York Times, Feinberg added, Theyre not listening. We need oversight on this.

@ http://bits.blogs.nytimes.com/2013/06/03/malware-that-drains-your-bank-account-thriving-on-facebook/

[LiLmEgZ]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

[Reefa]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

[LazyPotato]

I don't use FB,:troll: u mad Zeus?

[LazyPotato]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

Not really -- "Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent."

You MUST use Emsisoft Internet Security package to combat THIS malware.

[SnakeMasteR]

Stay away from Facebook, nothing to combat with. :P

[LazyPotato]

Stay away from Facebook, nothing to combat with. :P

There are some security apps for protecting FB users.

[dcs18]

I find NoScript set to globally deny works wonders on dicey sites (not just limited to FaceBook.)

[Reefa]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

Not really -- "Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent."

You MUST use Emsisoft Internet Security package to combat THIS malware.

i was referring to a non-infected system ;)

[Unbekannt]

Despite of getting infected or not, I would always recommend to stay away from FB. Most sucessful comercial spy engine ever made. Just a "social network" in disguise for its main purpose: sell private information.

[LazyPotato]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

Not really -- "Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent."

You MUST use Emsisoft Internet Security package to combat THIS malware.

i was referring to a non-infected system ;)

The malware still can infect PC,if I'm right. You need a 'perfect' suit,which is EIS

[sirri]

I just created FB account for GIveaway purposes, nothing more :D No privacy expos

[LazyPotato]

I just created FB account for GIveaway purposes, nothing more :D No privacy expos

You sure that you won't download or click any links beside legitimate giveaways?

[sirri]

I just created FB account for GIveaway purposes, nothing more :D No privacy expos

You sure that you won't download or click any links beside legitimate giveaways?

absolute...legit and legal giveaway

[Reefa]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

Not really -- "Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent."

You MUST use Emsisoft Internet Security package to combat THIS malware.

i was referring to a non-infected system ;)

The malware still can infect PC,if I'm right. You need a 'perfect' suit,which is EIS

i will agree to disagree

[Reefa]

I find NoScript set to globally deny works wonders on dicey sites (not just limited to FaceBook.)

i dont actually use facebook.but yes i use no script to.very underrated addon.once u teach it.it sort of reminds me of mailwasher.teach it then its a great benefit. :)edit-and that can take some time to do sandboxed :wtf:

[insanedown58]

Good thing I hate buying stuff online.

[LazyPotato]

Sounds like KooBFace is back lmao!

Thanks for the big alert... going to alert some of my friends who use Facebook to avoid this again... I THINK some of em may have been infected w/ it at least once

i no to us this sounds obvious.but tell em to run browser sandboxed.threat over :showoff:

Not really -- "Following the initial infection, the virus lays dormant until an online banking site is opened. It then uses keyloggers to steal the unsuspecting victims usernames and passwords. Sometimes the Zeus malware goes even further - it replicates the bank's website, using a fake interface to obtain social security numbers, credit card digits, and other sensitive information. Eurograbber, a Trojan that employs similar methods to that of Zeus, reportedly stole $46.5 miillion from European users.

It is for this reason that Zeus is so effective. Even when your bank account is fully drained, the malware continues to search for any tidbits of data that can be sold on the black market. And unlike most malicious software, there are little to no warning signs - the computer will continue to operate normally, as an outright crash was never the intent."

You MUST use Emsisoft Internet Security package to combat THIS malware.

i was referring to a non-infected system ;)

The malware still can infect PC,if I'm right. You need a 'perfect' suit,which is EIS

i will agree to disagree

Yes you can freely aggree to disagree...

[truemate]

facebook :fight:

[dcs18]

I find NoScript set to globally deny works wonders on dicey sites (not just limited to FaceBook.)

i dont actually use facebook.but yes i use no script to.very underrated addon.once u teach it.it sort of reminds me of mailwasher.teach it then its a great benefit. :)edit-and that can take some time to do sandboxed :wtf:

I liked that comparative reference to MailWasher. :yes:

[LazyPotato]

I find NoScript set to globally deny works wonders on dicey sites (not just limited to FaceBook.)

i dont actually use facebook.but yes i use no script to.very underrated addon.once u teach it.it sort of reminds me of mailwasher.teach it then its a great benefit. :)edit-and that can take some time to do sandboxed :wtf:

I liked that comparative reference to MailWasher. :yes:

Most of Antivirus programs come with that,no need for MailWasher -- Ex : Avast,AVG,Emsisoft,Bitdefender,Norton,Comodo.

[dcs18]

Most of Antivirus programs come with that,no need for MailWasher -- Ex : Avast,AVG,Emsisoft,Bitdefender,Norton,Comodo.

Are you aware there's simply no connection between MailWasher and any AntiVirus program?

[LazyPotato]

Most of Antivirus programs come with that,no need for MailWasher -- Ex : Avast,AVG,Emsisoft,Bitdefender,Norton,Comodo.

Are you aware there's simply no connection between MailWasher and any AntiVirus program?

Doesn't MailWasher stop spams? What's the point of it when you've a decent anti-spam in your AV?

[dcs18]

Yeah, MailWasher stops spams - not viruses (hence there's no connection between MailWasher and AntiVirus programs.) ;)