Zeus Crimeware Kit Source Code Leaked 121
Trailrunner7 writes "The source code to the infamous Zeus crimeware kit, which has been sold on underground forums for years, has been leaked and is now available for anyone to see if they know where to look. Security researchers over the weekend noticed that files appearing to contain the source code for the Zeus crimeware kit were starting to pop up on various forums frequented by attackers and cyber-criminals. The Zeus exploit kit is perhaps the most well-known kit of its kind right now, and has been used by a variety of attackers for numerous malware campaigns and targeted attacks."
jam3s? (Score:3, Interesting)
Doing a little forensics on the solutions file for the visual studio project, we can see that the username the hackers users on his Windows box is "jam3s". There are several strings in the solutions file that reference this username:
C : \ U s e r s \ j a m 3 s \ D e s k t o p \ Z e u s \
C : \ U s e r s \ j a m 3 s \ D e s k t o p \ Z e u s \ s o u r c e \ c l i e n t \ c o r e . c p p
I've seen this handle before in a lot of other malware designed to steal logon credentials and financial data.
Re:Cool, now maybe we can get a Linux port (Score:4, Interesting)
Meh. Like any security model, it's only good if it gets used properly in the real world.
Windows has a perfectly good security model, it's only when exposed to real-world use it falls over horribly. Make it too complex and people will do everything in their power to undermine it.