Cheap SpyEye code threatens to proliferate malware
Source code for expensive SpyEye Trojan malware is now available on the cheap, and that could lead to a major increase in SpyEye-based cyberattacks, writes Dark Reading’s Tim Wilson.
A French researcher who is part of the Reverse Engineers Dream Crew cracked the code’s licensing protection, which had allowed code dealers to sell SpyEye kits for as much as $10,000, Wilson writes.
A cyber threat analyst at security vendor Damballa reported the news in a blog entry, adding that the increased accessibility of the codes comes with another problem. He told Wilson that attributing an attack to a source could become even more difficult without a relatively sizable money trail to follow.
SpyEye has connections to the ZeuS Trojan malware — whose code is also free now — that helped hackers steal millions from banks. The sophistication of malware kits such as those for SpyEye and ZeuS allow unsophisticated hackers to wreak havoc. Until recently, the barrier for such hackers had been a lofty price tag. With the economics of source code changing quickly, a significant jump in cyberattacks could be on the horizon.
Connect with the GCN staff on Twitter @GCNtech.