Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
Banking Malware: New Challenger to Zeus? (Bank Info Security)
Widely available, free clones of Zeus, as well the arrests of several crimeware kit developers, have left the commercial malware market barren until now. The developer of a new financial crimeware, called Pandemiya, has begun selling the banking Trojan for between $1,500 and $2,000. The malware features Web injection capabilities, password-grabbers, task automation, a file grabber, encrypted command-and-control communications and the ability to capture screen grabs.
Websense Security Labs researchers announced the discovery of evolving Zeus strains that implement information-stealing procedures. These new Zeus variants are being used in low-volume e-mail campaigns that target users’ financial data. While a recent malware campaign appeared to focus on Canadian banks, U.S. businesses are also being targeted.
Microsoft Settles Malware Lawsuit (Bank Info Security)
In the wake of its most recent malware takedown, Microsoft apologized to No-IP.com customers for the service disruptions related to the company’s failed attempts to correctly reroute legitimate traffic from domains the company had seized. Microsoft also settled the civil lawsuit it filed against dynamic DNS provider Vitalwerks Internet Solutions, which does business as No.IP.com. Microsoft now says that after reviewing evidence provided by No-IP.com, it finds the company did not know its service was being abused.
45-Month Sentence in Phishing Scheme (Bank Info Security)
A Romanian, Julian Schiopu, has been sentenced to 45 months in prison for his role in a phishing scheme that netted thousands of credit and debit card numbers from U.S. financial institution customers. Among the financial institutions and companies targeted were Citibank, Capital One, Bank of America, JP Morgan Chase, Comerica Bank, Regions Bank, LaSalle Bank, U.S. Bank, Wells Fargo, eBay and Paypal. Of the 20 defendants charged in the phishing conspiracy, 13 pleaded guilty, and one was convicted at trial; six defendants remain at large.
Feds Charge Carding Kingpin in Retail Hacks (Krebs on Security)
The U.S. Justice Department announced the arrest of an alleged hacker accused of running a network of online crime shops that specialized in selling credit and debit card data stolen in breaches at retailers throughout the United States. The 30-year-old Russian, named Roman Seleznev, (aka “nCux” and “Bulba”), was arrested by the U.S. Secret Service while traveling in the Maldives.