'User-friendly' Zeus Trojan threatening world banks
RSA has highlighted an 'all-in one' Zeus Trojan package - making botnet attacks possible for the most 'unsophisticated' of users.

EMC's security division RSA has seen the increased use of the 'Zeus' Trojan against financial institutions worldwide, according its latest fraud report.
The report said Zeus (also known as wsnpoem) was extremely easy to use and operate, with Trojan infection kits available to rent or purchase, which it called a 'ready-made Zeus attack infrastructure.'
It said all that was needed was a compromised or fraudster's back-end server. Once the server was in place, they simply needed to install the Zeus administration panel, create a user name and password, and start launching the attacks.
"The administration panel can be easily controlled by unsophisticated users," stated the report.
RSA said that criminals were also offered access to an 'all-in-one' solution, a ready made hosting server with a built-in Zeus Trojan administration panel and infection tools.
The report said: "The service includes all of the required stages in a single package meaning that all the fraudster now has to do is pay for the service, access the newly-hired Zeus Trojan server, create infection points and start collecting data."
The servers were also offered with 'exploit packages' that facilitated Zeus infections. RSA said that this allowed fraudsters to infect users and grow a botnet of compromised machines.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
It said: "An entire Zeus attack comes alive, using a single service package that fraudsters can buy in the underground."
The report also said that 11 per cent of total global banking brands being phished were from the UK. This was second only to the US for the fifteenth consecutive month.
-
LaunchDarkly to "double down" on observability with Highlight acquisition
News Highlight's observability tools will be integrated into LaunchDarkly's Guarded Releases software deployment service
By Daniel Todd
-
Samsung Galaxy Tab S10 FE review
Reviews The Tab S10 FE retains the feel and core capabilities of Samsung's high-end S10 tablets, but compromises on the display and the performance
By Stuart Andrews
-
What to look out for at RSAC Conference 2025
Analysis Convincing attendees that AI can revolutionize security will be the first point of order at next week’s RSA Conference – but traditional threats will be a constant undercurrent
By Rory Bathgate
-
Seized database helps Europol snare botnet customers in ‘Operation Endgame’ follow-up sting
News Europol has detained several people believed to be involved in a botnet operation as part of a follow-up to a major takedown last year.
By Emma Woollacott
-
'You need your own bots' to wage war against rogue AI, warns Varonis VP
News Infosec pros are urged to get serious about data access control and automation to thwart AI breaches
By Rene Millman
-
CrowdStrike CEO: Embrace AI or be crushed by cyber crooks
News Exec urges infosec bods to adopt next-gen SIEM driven by AI – or risk being outpaced by criminals
By Rene Millman
-
Microsoft security boss warns AI insecurity 'unprecedented' as tech goes mainstream
News RSA keynote paints a terrifying picture of billion-plus GenAI users facing innovative criminal tactics
By Rene Millman
-
APIcalypse Now: Akamai CSO warns of surging attacks and backdoored open source components
NEWS Apps and APIs bear the brunt as threat actors pivot to living off the land
By Rene Millman
-
AI is changing the game when it comes to cyber security
News With AI becoming more of an everyday reality, innovative strategies are needed to counter increasingly sophisticated threats
By Rene Millman
-
RSAC Chairman urges collaboration to ensure collective defense in security
News Chairman emphasizes the critical need for cooperation among cyber security experts
By Rene Millman