Zeus Botnet Targeting Retailer Credit Cards

  /     /     /  
Publicated : 22/11/2024   Category : security


Zeus Botnet Targeting Retailer Credit Cards


Macys and Nordstrom cardholders are now at risk from financial malwares latest social engineering attack.



(click image for larger view)
Slideshow: How Firesheep Can Hijack Web Sessions
Just in time for the holidays, the Zeus botnet toolkit has gotten an upgrade: it now has the ability to target large retailers credit card users accounts.
That warning was issued on Wednesday by Amit Klein, CTO of data security firm Trusteer. Our research group recently discovered a Zeus botnet that is targeting credit card accounts of major U.S. retailers including Macys and Nordstrom just as the holiday gift buying season is in full swing, he said in a
blog post
.
Klein said the new capabilities are built into Zeus 2.1.0.8 -- the latest version -- and appear designed to steal peoples credit card details so criminals can conduct card not present (CNP) transactions. Merchants must typically foot the bill for any CNP fraud that occurs on their cards, thus many have invested substantial resources into detecting fraudulent transactions.
Accordingly, the Zeus malware now takes additional steps to circumvent anti-fraud measures. The attack we discovered uses social engineering to gather additional information beyond the credit card number that will make it easier for the criminal to bypass fraud detection measures used to investigate suspicious transactions, said Klein.
In particular, Zeus can inject a seemingly legitimate man-in-the-middle pop-up, he said, which requests the users credit card number -- for Macys or Nordstrom, as appropriate -- as well as card expiration date, CVV security code, social security number, mothers maiden name, and date of birth. After entering the information, users hit a button that says verify. Of course, nothing is being verified; the information is being recorded by Zeus and funneled to the criminals behind this operation.
This latest attack highlights the challenge faced by merchants, as well as security firms, of trying to keep pace with rapidly evolving financial
malware
. Indeed, the emergence of inexpensive financial malware such as Zeus -- apparently available for as little as $3,000 on the black market, though customizing it with other capabilities can easily add another $10,000 -- means that criminals without computer expertise now have access to
cheap botnets
and automated attack toolkits.
Interestingly, the new capabilities come in the wake of Octobers reported announcement that the creator of Zeus,
feeling the heat
, was
going to retire
. Security experts say theyre not holding their breath.

Last News

▸ CryptoWall is more widespread but less lucrative than CryptoLocker. ◂
Discovered: 23/12/2024
Category: security

▸ Feds probe cyber breaches at JPMorgan, other banks. ◂
Discovered: 23/12/2024
Category: security

▸ Security Problem Growing for Dairy Queen, UPS & Retailers, Back off ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Zeus Botnet Targeting Retailer Credit Cards