Zeus attacks threaten businesses in particular

Friday 19 October 2012

Businesses and organisations need to be aware of the risks of Zeus attacks, it has been claimed.

Amit Klein, chief technology officer of Trusteer, said corporations have "more to lose from a Zeus attack than individuals" and as such need to ensure they take proper precautions.

Zeus is a Trojan horse that steals banking information using man-in-the-browser keystroke logging and form grabbing.

It is spread primarily through drive-by downloads and phishing schemes, which aim to defraud companies and individual web users.

"[Companies] have more to lose from a Zeus attack because normally consumers are compensated by their banks to a certain limit if they lose money from malware activities," Mr Klein stated.

"It is not necessarily a formal law or regulation everywhere on the planet, but from what I hear and see, it is really common for this practice, to a certain limit."

However, he explained that businesses are less likely to be compensated by their banks if they fall victim to a Zeus attack.

He said this is partly because of the high volume transaction that businesses conduct with banks, noting that they have different relationships with lenders than consumers do.

Banks also expect companies to take proper precautions, given the additional skills and professionalism they tend to have within their IT departments, Mr Klein stated.

Companies should be aware of the regulations and take steps to mitigate the risks, he advised.

Posted by Alex Boardman