Police nab banking hackers

First European arrests for use of Zeus toolkit

Article comments

British police have made the first arrests in Europe of two people for using Zeus, a sophisticated malicious software program that can scoop up any sensitive information on a PC.

A man and woman, both 20 years old, were arrested in Manchester, on 3 November, said the Metropolitan Police's Central e-Crime Unit (PCeU). The pair, who have been released on bail, will face charges under the 1990 Computer Misuse Act and the 2006 Fraud Act.

Zeus is an advanced piece of malicious software. If installed on a PC, it can send spam, steal financial or other data or conduct a distributed denial-of-service attack against other computers. Machines infected with Zeus are essentially a botnet.

Those who have developed Zeus have also tailored it to be easy-to-use for less technical criminals, according to security vendor Symantec.

Zeus can be bought as a toolkit, which can create a unique Zeus variant. The toolkit also has a control panel for managing where Zeus will be hosted. Zeus will attack computers visiting a certain infected Web site by looking for software vulnerabilities in the victim's computer.

In the case of the two people arrested, Zeus had been configured to steal online bank account details and passwords and send that information to remote servers, according to police.

Police said the two people used Zeus to "harvest millions of lines of data from affected machines - hundreds of thousands per day."


Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
* *