News Stay informed about the latest enterprise technology news and product updates.

Zeus spoofs Visa, MasterCard security programs

Bank Trojan injects fake enrollment screens during online banking sessions to trick users into divulging sensitive data.

The Zeus Trojan is using a new tactic to fool users by exploiting the Verified by Visa and MasterCard SecureCode security programs, researchers at online security provider Trusteer Inc. said.

When users of machines infected with Zeus start up an online banking session, the bank Trojan injects a fake enrollment screen for one of the security programs and prompts users to input their Social Security number, credit or debit card number, expiration date, and PIN or CSV code, according to New York-based Trusteer.

In the scheme, users are told that new FDIC rules require that they enroll in the Verified by Visa/MasterCard SecureCode program to protect their accounts.

Criminals use the data collected by Zeus to commit fraudulent transactions with retailers that use the payment card security programs, Trusteer said. The company, which supplies a browser security plug-in, discovered the new Zeus scheme through its Flashlight computer forensic service.

The Zeus Trojan, also called Zbot, has been used extensively by criminals in online banking heists, mostly against small and midsize businesses, nonprofits and municipalities.

Dig Deeper on Emerging security threats and attacks

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.