Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×
Security Software Technology

SpyEye Trojan Source Code Leaked 55

Posted by Soulskill from the without-the-consent-of-major-league-baseball dept.
wiredmikey writes "The SpyEye malware kit has long been both the bane of unsuspecting victims and a boon for cyber-criminals. Now, according to security researchers, the situation may have taken a turn for the worse. The SpyEye Builder patch source code for release 1.3.45 was leaked by the Reverse Engineers Dream Crew (RED Crew) recently after a crew member was able to locate a copy of SpyEye Builder 1.3.45 and create a tutorial that enables a reader with SpyEye Builder to crack the hardware identification."
This discussion has been archived. No new comments can be posted.

SpyEye Trojan Source Code Leaked More

SpyEye Trojan Source Code Leaked

Comments Filter:

  • Re:The department? (Score:2, Informative)

    by Anonymous Coward on Monday August 15, 2011 @06:19PM (#37100324)

    It's from the Simpsons episode "Brother's Little Helper."

    *TWELVE YEAR OLD SPOILER WARNING*

    Major League Baseball is found to be spying on Americans with spy satellites.

  • Re:WTF (Score:5, Informative)

    by flappinbooger ( 574405 ) on Monday August 15, 2011 @06:55PM (#37100668) Homepage

    ...does any of this mean? Can we get summaries that aren't the first paragraph of TFA? Can we get an explanation of what the hell TFA is talking about and why we should care?

    Sheesh.

    Spy Eye is a pretty well known and powerful RAT/Bot tool on level with the venerable Zeus. The real non-backdoored copies are (generally) all for-pay.

    This is a licensed for-pay malware/crimeware toolkit. The source code is leaked and there is a CRACK for the builder. This is key. Now it's easier for the freeloaders and skiddies to get at and CUSTOMIZE this high level malware tool, making it harder to detect.

    This means things are going to get more interesting (re: worse) before they get better.

    The 'hacker" scene is like .001% real coder and 99.999% script kiddie and leach. This makes powerful tools available to many more people than before.

  • More info (Score:3, Informative)

    by Anonymous Coward on Monday August 15, 2011 @07:04PM (#37100726)

    From ComputerWorld [computerworld.com]: "SpyEye is a particularly nasty piece of malicious software: it can harvest credentials for online accounts and also initiate transactions as a person is logged into their account, literally making it possible to watch their bank balance drop by the second."

    The malware kit is normally sold to criminals, with each sold copy protected by an encryption scheme of some kind. This encryption scheme was cracked and the source code also released, so anyone can now freely compile the software. The malware also uses a botnet to perform transactions using compromised banking credentials. It's not clear if the hack also enables one to setup or control the botnet aspect. However, one could presumably make use of the capability to directly initiate transactions on the victim's computer.

    And to think I just got all my online accounts linked together to make my life easier!

Slashdot Top Deals

If you want to put yourself on the map, publish your own map.

Close