Gameover Zeus and Cryptolocker internet threats
June 4th 2014
There has been a lot of media coverage over the past week regarding Gameover Zeus and CryptoLocker internet threats. It is important to note that these are not new threats - they have been in existence for a number of years. The current media coverage is highlighting recent progress made by law enforcement agencies in thwarting the efforts of those behind the threats.
Are you protected?
If you are an IT Force client currently subscribed to our Symantec.cloud antivirus service then you are already protected against both Gameover Zeus and CryptoLocker.
If you are not subscribed to the service we have included a link below to a symantec removal tool for Gameover Zeus.
If you are not an IT Force customer then you need to take the following steps:
- Update - make sure that your operating system software is up to date and that you have installed any patches that the vendor may have released.
- Antivirus software - install an antivirus software. This will serve as a first line of defence when trying to protect your desktop PC or mobile device from attack.
Should you have any questions or concerns please do not hesitate to contact the IT Force service desk on 01 5546 099.
Further Information
(source: www.ibtimes.co.uk)
What is Gameover Zeus?
Gameover Zeus is a sophisticated piece of malware which can take over your PC without your knowledge, giving those in control of it access to everything you do, as well as giving them the ability to record your keystrokes, video what you do on screen and even turn on your webcam.
What do the criminals controlling Gameover use it for?
Gameover is used by the criminal gang operating it to seek out and identify financial information stored on your computer as well as capturing any credentials you enter into online banking or shopping sites. Once they have this information, they use it to re-direct bank transfers into their own accounts.
To date, law enforcement agency estimates for how much this piece of malware has stolen range from €75 million (Europol) to $100m (FBI) into the hundreds of millions of pounds (UK's National Crime Agency).
What is CryptoLocker?
If the Gameover Zeus malware doesn't find any financial information on your PC, then the criminals have designed it so that it will install the pernicious ransomware known as CryptoLocker, which encrypts your computer's hard drive, locking access to everything you have stored on it, and demanding your pay a ransom in order to get it unlocked.
CryptoLocker has infected more than 230,000 PCs globally by April 2014 having first emerged in September 2013.
In its first two months of operation, the FBI estimates that $27m (£16.1m) in ransom was paid.
How does Gameover spread?
Gameover is spread in the same way many pieces of malware are these days - via phishing emails that look like they come from trusted brands. The emails can contain attachments storing the malware, or a link to a malicious website which searches the victim's system for vulnerabilities before installing the malware.