According to RSA the security company's FraudAction Research Lab, cyber-criminals, with the help of SpyEye and Zeus exploit kits, have attacked abuse.ch, the Internet site of Swiss origin which spots malicious domains. Understandably, abuse.ch has been detecting fraudulent ISPs as well as harmful URLs serving banker Trojans.
Stated RSA that the miscreants were employing fresh plug-ins created via Trojan SpyEye's most recent samples. SpyEye, which was a kit to develop crimeware, appeared during late-2009 after which it instantly began competing with the Zeus crimeware kit. Miscreants responsible for Zeus had given away their source code for a price alternately morphed it with SpyEye so currently malware items were developed with both the source codes for contaminating PCs, capturing credentials as well as stealing from bank accounts.
Additionally, RSA stated that the cyber-crooks purposely injected genuine domains inside the configuration files of SpyEye for tossing those website domains' blocklists. Consequently, the service could little differentiate the genuine domains from the malevolent domains, the security company thought. EWeek.com published this on March 10, 2011.
...
