The latest version of the Zeus do-it-yourself crimeware kit goes to great lengths to thwart would-be pirates by introducing a hardware-based product activation scheme similar to what's found in Microsoft Windows. The newest version with bare-bones capabilities starts at $4,000 and additional features can fetch as much as $10, …
One more reason to dump windows then:)
Of course, Macs and Linux are pretty much safe from this C**P, (maybe not for ever, but for now)
I don't follow your logic here?
How do you make your insightful deduction here?
Mac OS X isn't so safe these days, but with most Linux distros being free and open anyway, pirating them is somewhat pointless. Savvy?
What are you talking about Leo? Did you even read the article?
It might be one more reason...
But theres still no good reason at all to get a Mac.
Please Reply Dan
I'm sure Dan will enlighten us.
Dan, does this attack work on Linux and Mac PC's?
Wake up you muppet!
Nice! Thanks for enforcing the attitude that all of us Linux and Mac users are wrapped in our perfect little bubbles of security, care-free!
Balls! Wake up and smell Steve's coffee! I own a Mac and having spent years learning to fight off nasties on my Windows kit I am not so complacent. I know there are limited nasties on the Linux and OSX platforms, the money isn't there yet to make it worth while. However as more people get fed up with Windows, the market share increases for OSX and Linux and as it does we will start catch the malware maker's eye.
You'd better start learning about proper Linux and OSX security, because Linus and Steve don't give a monkey's about us, so we need to learn to do it ourselves, not live in this perfect little bubble of protection that Steve and Penguin fanbois would have us believe!!!
Re : Huh?
Oddly enough I have read the article and the related links and Leo is correct. This is about a Windows trojan variant - nothing to do with Mac OSX or Linux or Unix or BSDs. Nothing to do with pirating anything other than the (protected) trojan.
Leo did say "(maybe not for ever, but for now)"
For once, Microsoft really IS the leader
Undoubtedly, this product activation scheme has been implemented to "ensure that Zeus's customers receive the product quality they expect". Microsoft must be so proud of their proteges!
Don't worry, soon we will be able to get a cracked version from TPB. We all know that there is no such thing as working DRM.
russia eastern europe morals
Got to love how criminals can almost legitimately build up a prospering company in that part of the world. I guess the only difference between them and Wall Street is we have fully legalized our thieves.
Professional virus development.
This scares me.
Right now most of the malware being written is crap thrown together by incompetent and unprofessional programmers. They succeed only because most of their targets are even more clueless and fail to take even the most basic security precautions.
All that will change if we start seeing teams of highly skilled professional developers developing commercial crime ware products.
Who says they've been outed yet? When thinking "commercial", think big - like industrial espionage.
2+ years 2 late
Already being done, The banking malware is passing right through Anti virus products. It has been professionally created for a number of years, and is not designed to affect the end user's experience.
Don't confuse the run of the mill malware with professional made banking malware.
Is this copy if Zeus legal?
"You may have been the victim of software counterfeiting"
"This copy of Zeus has been detected as illegal. Two wrongs do not make a right."
surely some mistake!?
Criminal hackers worried their criminal customers would attempt to rip them off?? Tis madness I tells you!!
You know what they say...
No honour among thieves, and all that.
There is no Windows 7 Business
It's Vista Business or 7 Professional.
Copy protection system
And the irony is, due to broken laws here in the US like the DMCA, these guys could then turn around and sue the antivirus companies for cracking copy protection systems, since they certainly do obtain copies of this software and analyze it to see how it works. Down with the DMCA!
I would LOVE to see that!
This is great..
I can't help chuckling at this, I wonder how long its going to be before someone cracks the activation scheme?
On a side note, how many buyers are going to want to provide registration info that identifies the specific machine this software is installed on knowing how easy that would be to track down?
Think of how much fun Interpol would have if they ever got that list.
some crafty little fucker will reverse engineer this and produce a bypass zeus activation kit, and a keygen so that you can get the multi licence enterprise edition. same of course as what happens with that windows stuff, except thats called bypass wat. no, wat not what.
by the way there is no need to bot linux, just use the command line, linux does it all for you.
why bother? If you have the expertese couldn't you just write your own malware? then again, I dont claim to understand the mindset of all of these people....
Consider who their arm of FAST will look like
These guys are professional criminals with enforcement arms, they are unlike to take you to court, but will probably send flowers..........
Re : ah,but
"by the way there is no need to bot linux, just use the command line, linux does it all for you."
the Zeus programmers will release malware-infected keygens on the pirate scene for their own software that will add the would-be Zeus pirates to their <cough>"legitimate"<cough> customers' botnets.
This is getting too weird...
Ain't it great!
i see what you did there..
microsoft and a malware company use the same techniques.. gosh, do you think microsoft are bad too?
to cut off Russia/China/etc. from the Internet. Do we actually need them? Really? They can have their own internet...
I know that most spam originates from neither of those two, but taking out those two would make the Internet a much better place.
As it happened, I started out being fairly un-xenophobic, but every time I read a story about foreigners pulling shit like this... Grr. (I guess that's what the rest of the world feels like when the US goes and invades countries because they feel like it...)
@Leo Maxwell: You're using security by obscurity
Using Mac is using security by obscurity.
If you were at a competitive industry, a bank, or a government agency, places commonly attacked with custom malware, a Mac would be a terrible platform, because there could be so many unknown attacks coming at you.
Mac's OSes have not been carefully examined by publicity hungry malware designers (unethical security experts) and malware authors for vulnerabilities. Those vulnerabilities are there, unfixed, and unknown to laypeople.
With Linux, well, contrary to what you think lots of Linux systems are broken into.
Where is law enforcement and the intelligence community?
Malware on the computers of civilians is a serious security exposure to the nation.
Malware on the computers of civilians is a criminal theft exposure to the nation.
Law enforcement and the defence intelligence communities should be after the people who distribute malware authoring tools.
Put them in Guantanamo and let the comparatively harmless Muslim "terrorists" return home.
> "The latest version of Zeus is 220.127.116.11"
c00l eV3n t3h v3rs10n nUm3eR i5 l337 ;)
I can't believe nobody has said this...
...but clearly, there's no honour amongst thieves.
You won't find my coat: it's being beta tested by some completely respectable looking Russian business men.
If your computer stops working and you have the disc, you should be able to put it on your new computer. Always get a disc..
The other side of the coin
Does this also mean that you can disinfect (or at least deactivate) a nasty infection just by screwing with its registration key?
If I change my motherboard, will I now have to phone up the botnet control to ask them to reactivate my install key?
malware see, malware do
this post just about made my day/week/month.
I've always considered Windows to be the biggest piece of malware floating around, and MS to be of questionable legality in various aspects (and not just the anti-trust stuff), so it's nice to know they're inspiring "the next generation" so to speak...
Cunning and undoubtedly clever and devious programs such as this, with their inside knowledge of all the tricks may well come up with a pretty good copy protection system.
I sorely doubt it
Proper copy protection is *impossible*.
Not just supremely difficult, like manufacturing DNA from scratch and then getting it to breed: actually scientifically impossible, like getting more energy out of something than you put into it.
"Mac would be a terrible platform, because there could be so many unknown attacks coming at you."
Ah, so the many known, unpatched exploints on the Windows platform, plus the many unknown ones, make for a far more secure system? Really? A new model - security through insecurity?
Security researchers have been screaming about the Mac being an open platform for malware for years now - usually just before they launch an anti-virus product for mac. One that has no viruses and no trojans to scan for. You'd think, if it was so easy, someone somewhere would have written a dozen or two by now, but not even one has appeared.
"With Linux, well, contrary to what you think lots of Linux systems are broken into."
Yeah, right, sure, I believe you. Are you by any chance launching a linux-based anti-virus software product soon?
Every copy of Zeus is illegal, paid for or not.
On principle I don't use closed-source hacking tools :-)
(And activation-cracked Zeus warez is maybe the software most likely to be a trojan.)
I think someone is pulling your leg a litte
unless the version really is L337?
"Zeus .... introducing a hardware-based product activation scheme similar to what's found in Microsoft Windows".
As I've always suspected, there is very little difference between windows and a virus......
Seriously though, a large part of this problem is MickySoft's reluctance to distribute original disks with every PC. It’s an error to have a flawed security model in the huge unified mess that is windoze; however it’s an absolute disaster and totally inexcusable when you do not give people the tools to recover from that error.
Without separate media it is impossible to do a disk reformat and a reinstall of windows, MickySoft's failed policy of only allowing repairs or refreshes of windoze from the easily infectable cab files stored on the hard drive is a failure, as is product activation. MickSoft would sooner stop 1 illegal copy of it software being made rather that prevent 100,00 users getting infected with a virus. And lets face it, copy protection of most MickySoft products has failed miserably as evidenced with the number of copies of <insert name of MickSoft product> available on <insert name of torrent site> or <insert name of download site> or even usenet.
At least if my *nix boxen go tits up, I can perform a clean (re)install.
It’s time for MickeySoft to stop being part of the problem and become part of the solution, so until then FOAD MickSoft.
Very clever, I'm sure.
Anyone know of any other Operating Systems that might be available in a medium other than an original disk set?
Ah! So we're into "one law for us, one for them" territory are we?
Unless, of course, this problem is nothing to do with MS, Apple, Canonical et. al. and everything to do with greedy OEMs saving 50p on a sale.......
"...but with most Linux distros being free and open anyway, pirating them is somewhat pointless. Savvy?"
Whats that got to do with the article? Did you read it, or were you too busy cockwaving that your machine is unaffected that you couldn't be bothered?
The article says a mallware control program uses copyright protection and range of packages similar to commercial programs. Its not about anyone trying to pirate an operating system.
The comparison between these malware authors and Microsoft is flawed. They both treat their customers like criminals, but only one of them has a good reason to.
- Nokia: Read our Maps, Samsung – we're HERE for the Gear
- Ofcom will not probe lesbian lizard snog in new Dr Who series
- Kaspersky backpedals on 'done nothing wrong, nothing to fear' blather
- Episode 9 BOFH: The current value of our IT ASSets? Minus eleventy-seven...
- Too slow with that iPhone refresh, Apple: Android is GOBBLING up US mobile market