New "Undetectable" trojan wiping bank accounts clean.

JosephLeo

JosephLeo

Active Member
Reaction score
9
Wow, just heard about something interesting on the radio today. Apparantly there is a new version of the "Zeus" trojan (personally I never heard of it) called Zeus3 which is emptying peoples bank accounts and generating a false bank statement on the fly displaying zero change. Scary stuff!

Although, I'm curious about how "undetectable" it is. So far all I can find is that there is no automated virus scanner that can find it. So I know I'm in the clear since I only use automated virus scanners after running a preliminary manual scan.

http://www.infosecurity-magazine.co...e-customers-hit-by-600-000plus-zeus-3-fraud-/
 
Zeus is pretty well known in the trojan world. Afaik a virus can be undetectable if it goes very low level aka some kind of low level rootkit.

This is yet another reason to educate people about the dangers of the internet.
 
No infection is undetectable unless it does nothing. If it does something then that something can be detected.

Zeus 3 is not exactly new and AFAIK detected by a wide range of common AV scanners.

http://blog.infotech.com/analysts-angle/zeus-3-easily-preventable-discoverable-and-correctable/

However I'm sure the real criminals are producing custom versions not so easily detected.

We all know AV scanning is next to useless by now surely? Maybe it's just me but everyone I speak to confirms that their AV detects nothing for a year and then they get infected. I.e. it catches nothing but lets the brand new variants in. This is why HIPS or sandboxing is required rather than signature based scanning.

Also my bank using a card reader which requires a valid card and PIN and then produces a unique token which is required to login, and then a further such check for any monies moved to an account that hasn't previously been used. I fail to see how a trojan can get around all that.
 
Last edited:
MobileTechie said:
Also my bank using a card reader which requires a valid card and PIN and then produces a unique token which is required to login, and then a further such check for any monies moved to an account that hasn't previously been used.
Click to expand...

CHASE over here now lets you take a picture of the front and back of a check and have the money deposited into your account.

I have a feeling your banks are more secure.
 
You must log in or register to reply here.

Similar threads

Kitten Kong
Hirens 13 - Now released
2
Replies
31
Views
20K
eloria
E
Back
Top