Shields Up!: 60GB of stolen data found in botnet

Researchers from AVG took a look inside a mini-Zeus botnet called Mumba and found it was storing 60GB of stolen information. This information included bank account numbers, credit card numbers, log on credentials for social networking sites, even emails.

blockquote>“Detected by AVG security products, the “Mumba” botnet was found to be using four different variations of the latest version of the Zeus malware to steal data from compromised machines. Zeus version 2.0.4.2 now supports the latest Microsoft operating system – Windows 7, and is able to steal HTTP traffic data from the Mozilla Firefox browser.”

The cybercrime gang the Avalanche Group is believed to be behind the botnet and have been aided in their crime operations by cybercrime friendly ISP TROYAK-AS, which enjoys it’s underground rep and protects the hackers and spammers that use their service. They ignore take down requests and have stubbornly resisted being shut down even when their upstream providers shut them down. They simply bounce back and find a new provider.

Mumba is believed to be the first in a wave of new mini-botnets created by the “DIY” Zeus crimeware kit, Botnet herders are starting to view huge botnets as security threats and turning to what they believe are safer mini-botnets that will be harder to detect and reverse engineer.

Read [ZDNet]