SpyEye

SpyEye is a virus that attacks users running the web browsers Safari, Google Chrome, Firefox, Internet Explorer or Opera on both the iOS and Microsoft Windows operating systems.[1] This malware uses keystroke logging and form grabbing to steal user credentials for malicious use.[1][2] SpyEye allows hackers to steal money from online bank accounts and initiate transactions even while valid users are logged into their bank account[3] and insert new fields into a website prompting for user names, passwords, or card numbers allowing hackers to steal money without account holders ever taking notice.[4]

SpyEye came from Russia in 2009 and was sold in underground forums for $500+ in which SpyEye advertised features such as keyloggers, auto-fill credit card modules, email backups, config files (encrypted), http access, Pop3 grabbers, FTP grabbers, and a "Kill Zeus" feature of undetermined purpose.[5]

Authors of SpyEye

After announcing his retirement in 2010, the author of Zeus gave the malware's source code to his biggest competitor, the creator of the SpyEye trojan.[6][7] Aleksandr Andreevich Panin, author of SpyEye, was arrested and sentenced to nine years and six months in prison.[8] Hamza Bendelladj co-author of SpyEye, was arrested and also sentenced to prison, upon which point both men were given a combined sentence of 24+ years after being charged with the theft of hundreds of millions of dollars from banking institutions worldwide.[9]

See also

References

  1. 1 2 "SpyEye Targets Opera, Google Chrome Users". Krebs on Security. Retrieved 26 April 2011.
  2. "Trojan: Win32/Spyeye". www.microsoft.com. Retrieved 2016-05-01.
  3. Kirk, Jeremy. "SpyEye Trojan defeating online banking defenses". Computer World. Retrieved 19 June 2017.
  4. Kirk, Jeremy. "SpyEye Malware Borrows Zeus Trick to Mask Fraud". PCWorld. Retrieved 19 June 2017.
  5. Coogan, Peter. "SpyEye Bot versus Zeus Bot". Symantec Official Blog. Retrieved 19 June 2017.
  6. Diane Bartz (29 October 2010). "Top hacker "retires"; experts brace for his return". Reuters. Retrieved 16 December 2010.
  7. Internet Identity (6 December 2010). "Growth in Social Networking, Mobile and Infrastructure Attacks Threaten Corporate Security in 2011". Yahoo! Finance. Retrieved 16 December 2010.
  8. Krebs, Brian (20 April 2016). "SpyEye Makers Get 24 Years in Prison". Krebs On Security. Retrieved 23 March 2017.
  9. Khandelwal, Swati. "Creators of SpyEye Virus Sentence to 24 Years in Prison". The Hacker News. Retrieved 20 June 2017.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.