Cheap SpyEye code threatens to proliferate malware

Source code for expensive SpyEye Trojan malware is now available on the cheap, and that could lead to a major increase in SpyEye-based cyberattacks, writes Dark Reading’s Tim Wilson.

A French researcher who is part of the Reverse Engineers Dream Crew cracked the code’s licensing protection, which had allowed code dealers to sell SpyEye kits for as much as $10,000, Wilson writes.

A cyber threat analyst at security vendor Damballa reported the news in a blog entry, adding that the increased accessibility of the codes comes with another problem. He told Wilson that attributing an attack to a source could become even more difficult without a relatively sizable money trail to follow.

SpyEye has connections to the ZeuS Trojan malware — whose code is also free now — that helped hackers steal millions from banks. The sophistication of malware kits such as those for SpyEye and ZeuS allow unsophisticated hackers to wreak havoc. Until recently, the barrier for such hackers had been a lofty price tag. With the economics of source code changing quickly, a significant jump in cyberattacks could be on the horizon.

About the Author

Connect with the GCN staff on Twitter @GCNtech.

Featured

  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected