Recent Posts

Recent Blog Posts

The PhishLabs Blog

New Commercial Malware for Sale, Zeus Evolves, Microsoft Apologizes and more | TWIC - July 14, 2014

Posted by Lori Gildersleeve on Jul 14, '14

Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).

Widely available, free clones of Zeus, as well the arrests of several crimeware kit developers, have left the commercial malware market barren until now. The developer of a new financial crimeware, called Pandemiya, has begun selling the banking Trojan for between $1,500 and $2,000. The malware features Web injection capabilities, password-grabbers, task automation, a file grabber, encrypted command-and-control communications and the ability to capture screen grabs.

Websense Security Labs researchers announced the discovery of evolving Zeus strains that implement information-stealing procedures. These new Zeus variants are being used in low-volume e-mail campaigns that target users’ financial data. While a recent malware campaign appeared to focus on Canadian banks, U.S. businesses are also being targeted.

In the wake of its most recent malware takedown, Microsoft apologized to customers for the service disruptions related to the company’s failed attempts to correctly reroute legitimate traffic from domains the company had seized. Microsoft also settled the civil lawsuit it filed against dynamic DNS provider Vitalwerks Internet Solutions, which does business as Microsoft now says that after reviewing evidence provided by, it finds the company did not know its service was being abused.

A Romanian, Julian Schiopu, has been sentenced to 45 months in prison for his role in a phishing scheme that netted thousands of credit and debit card numbers from U.S. financial institution customers. Among the financial institutions and companies targeted were Citibank, Capital One, Bank of America, JP Morgan Chase, Comerica Bank, Regions Bank, LaSalle Bank, U.S. Bank, Wells Fargo, eBay and Paypal. Of the 20 defendants charged in the phishing conspiracy, 13 pleaded guilty, and one was convicted at trial; six defendants remain at large.

The U.S. Justice Department announced the arrest of an alleged hacker accused of running a network of online crime shops that specialized in selling credit and debit card data stolen in breaches at retailers throughout the United States. The 30-year-old Russian, named Roman Seleznev, (aka “nCux” and “Bulba”), was arrested by the U.S. Secret Service while traveling in the Maldives.

Topics: The Week in Cybercrime

What's this all about?

The PhishLabs Blog is where we share our insights and thoughts on cybercrime and online fraud.

Recent Posts

Subscribe to Email Updates

Posts by Topic

see all