We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Microsoft's MSRT antivirus now detects Zeus

Microsoft hopes to knock Trojan offline

Microsoft has revealed its Malicious Software Removal Tool (MSRT) now detects Zeus malware.

The company said the update to the widely used virus removal program that's free for Windows users should make it harder for the many criminals who use Zeus to keep running their software on computers that don't have antivirus software installed - often an easy target up until now.

According to a September 2009 study by security vendor Trusteer, 45 percent of Zeus-infected machines have either no antivirus software or an out-of-date product. On the other hand, Zeus has been effective at avoiding the type of detection that Microsoft is now adding to its MSRT. According to that same report, 55 percent of Zeus infections were on machines that did have working antivirus programs installed.

In a series of raids starting September 28, authorities in the UK, along with the US and Ukraine arrested more than 100 members of the largest-known Zeus gang, but there are still probably dozens of smaller gangs in operation. Zeus is very easy to obtain online, and it has been adapted by many different criminals since it first popped up four years ago.

"Underground forums are teeming with questions ranging from the very basics about configuring the malware to people boasting about the size of their botnets," said Matt McCormack, a Microsoft spokesman, in a blog. "Even the botnet controllers are themselves quite varied, from apparent hobbyists to those that likely have more nefarious intent."

The software is best known for stealing online banking credentials, but recently security experts have started to worry that it could be used to steal corporate secrets as well.

Microsoft's decision to add MSRT protection has had a big effect on some malicious programs. It's credited with pretty much knocking the Storm Worm offline in 2007, for example.

Microsoft clearly hopes to have a similar effect on Zeus, also known as Zbot. "We find ourselves knocking on Zbot's door this month, and we're glad we are," McCormack said.

See also: Zeus botnet hits 100,000 UK computers


IDG UK Sites

LG G4 Note UK release date and specification rumours: Samsung Galaxy Note 5 killer could be the LG 3......

IDG UK Sites

In defence of BlackBerrys

IDG UK Sites

Why we should reserve judgement on Apple ditching Helvetica in OS X/iOS for the Apple Watch's San...

IDG UK Sites

Retina 3.3GHz iMac 27in preview: Apple cuts £400 off Retina iMac with new model