Home / Channel / Anonymous supporters tricked into installing Zeus Trojan

Anonymous supporters tricked into installing Zeus Trojan

Slyvia March 5, 2012 Channel

Symantec posted a blog at the weekend which detailed that Anonymous supporters were tricked into installed a Zeus Trojan.

According to the report, Cybercriminals modified a distributed denial of service tool called Slowloris to include a client for Zeus, well known malware that steals login details and passwords for banking websites. The blog says that the modified tool was targeted at Anonymous supporters.

Anonymouse have earned a reputation for targeting government and corporations which they deem as being corrupt. Then can then expose sensitive detail to embarrass or cause problems for the organisations. They have also taken down servers, including the well known campaign against Sony last year.

Anonymous can sometimes depend on support from internet users around the world, aiming denial of service attacks at specific websites. They link to DDOS tools for people to download, so they can ‘join' in the attacks. In May 2011 on the Pastebin clipboard website Anonymous posted their supporters to download a DDOS tool called Slowloris. This was widely linked to from various sites at the time.

Symantec however have discovered that Zeus cybercriminals copied the post word for word and reposted it on Jan 20th. The link however pointed to a Slowloris DDOS tool which was modified with malicious code. It was posted on the same day that Megaupload was taken down by law enforcement agencies in several countries. This tied in with a genuine campaign  by Anonymous.

The modified, malicious version of Slowloris apparently appeared in another version guide which Anonymous posted, also being linked to via Twitter online. Symantec added that if someone downloads this malicious version of the tool then the malware will also try to conceal the infection by downloading the real Slowloris application.

Users who have opened the malicious version may have had their email information, banking details and cookies stolen.

Symantec said “Not only will supporters be breaking the law by participating in DOS attacks on Anonymous hacktivism targets, but may also be at risk of having their online banking and email credentials stolen.”

Kitguru says: Taking part in these attacks is risky enough, but looks like the risks just got even higher.

Become a Patron!

Tags

Check Also

Montech HyperFlow Silent 360 AIO Cooler – UPDATE 16 March 25

As some of you may have seen, this week we published a review of the Montech HyperFlow Silent 360 AIO cooler, both on the KitGuru website and our YouTube channel. In this review we explained that the HyperFlow Silent 360 AIO cooler has some issues in regards to the new AMD mounting system that Montech adopted...

© Copyright 2025, Kitguru.net All Rights Reserved Standard Terms

We've noticed that you are using an ad blocker.

Thank you for visiting KitGuru. Our news and reviews teams work hard to bring you the latest stories and finest, in-depth analysis.

We want to be as informative as possible – and to help our readers make the best buying decisions. The mechanism we use to run our business and pay some of the best journalists in the world, is advertising.

If you want to support KitGuru, then please add www.kitguru.net to your ad blocking whitelist or disable your adblocking software. It really makes a difference and allows us to continue creating the kind of content you really want to read.

It is important you know that we don’t run pop ups, pop unders, audio ads, code tracking ads or anything else that would interfere with the KitGuru experience. Adblockers can actually block some of our free content, such as galleries!