The Zeus or Zbot family of Trojans have been around for an extended time. They are among the most widespread malware infections, and for good reason, they are very effective at what they do. Since the release in 2011 of the Zeus Trojan Trojan on torrent networks, PC security researchers have found a marked increase in infections using variants of this sophisticated and dangerous malware infection. TSPY_ZBOT.JMO is one of the many variants of this data-stealing Trojan. Distributed via a social designing scam that exploits the UEFA European Championship 2012, TSPY_ZBOT.JMO is designed to steal banking credentials and other sensitive data, as well as allowing criminals to get access of the compromised computer via a large botnet. If you suspect that your computer system has been infected with the TSPY_ZBOT.JMO Trojan, ESG security analysts strongly advise using a reliable anti-malware scanner to scan your hard drives and to safeguard your online account information.
Taking advantage of the popularity of the UEFA European Championship 2012, or Euro Cup 2012, criminals have set up a fake version of UEFA’s website. This malicious website is designed to be identical to the real UEFA website, using a spoofed URL with a EuroCup2012.com domain. This fake UEFA web page contains various malicious scripts, including a script that installs the Sirefef rootkit, fake security software and a Trojan downloader that installs the TSPY_ZBOT.JMO Trojan on the victim’s computer. To avoid these kinds of fake web pages, ESG malware researchers recommend using only reliable search engines and official sources when looking for a particular website. It is also important to use a fully-updated anti-malware scanner in order to make sure that the website you are visiting is legitimate. ESG security researchers also recommend double-checking your website’s URL and ensuring that your web browser’s security settings are set on their maximum setting.
The TSPY_ZBOT.JMO Trojan is a Severe Threat to Your Computer’s Security
TSPY_ZBOT.JMO and variants in the Trojan.Zbot family will usually have advanced keylogger capabilities that allow them to keep track of your online activity and steal your online passwords whenever you log into a banking website or to an online email account. TSPY_ZBOT.JMO can also steal information about your credit card and send it to a remote location. Criminals can then use this data to steal your identity and clean out your bank accounts. TSPY_ZBOT.JMO has also been associated with botnets used to send out spam email messages and carry out coordinated attacks.
How Can You Detect TSPY_ZBOT.JMO?