BlackBerry Forums Support Community               

Closed Thread
 
LinkBack Thread Tools
Old 08-09-2012, 08:02 AM   #1 (permalink)
Thumbs Must Hurt
 
Orinoko's Avatar
 
Join Date: Mar 2007
Location: Manchester, UK
Model: Z10
Carrier: O2
Posts: 133
Post Thanks: 3
Thanked 0 Times in 0 Posts
Default Zeus malware

Please Login to Remove!

Hi,

Is there any way to block the recently publicised Zeus virus using BES? I know you can block certain software packages from being installed so can this not be utilised?

Thanks.
Offline  
Old 08-09-2012, 09:08 AM   #2 (permalink)
Spam Reporter
 
dc/dc's Avatar
 
Join Date: Oct 2005
Location: IAD
Model: 6230
Carrier: Voicestream
Posts: 14,530
Post Thanks: 220
Thanked 345 Times in 311 Posts
Default Re: Zeus malware

There are no viruses or malware that affect BlackBerry. Do not involve BES in fighting a Windows malware. Get a good endpoint security system for your Windows workstations if you don't have it, get a firewall installed, and make sure they're all up to date.
__________________
I h8 txtspk.
Offline  
Old 08-09-2012, 09:09 AM   #3 (permalink)
Appleinator
 
Dubdub's Avatar
 
Join Date: Nov 2005
Location: New Hampshire
Model: App5
OS: AJBR549
PIN: Ask
Carrier: ATT & Verizon
Posts: 20,029
Post Thanks: 54
Thanked 782 Times in 742 Posts
Default Re: Zeus malware

Zeus isn't a recent virus, as it has been around since 2009. AFAIK, it affects PCs only. There is no known virus targeting the BB, so not something that should cause you to lose sleep over.
__________________
-->>BB FAQ

-->>Stinsonddog's Tip Site!

-->>Twitter


If someone helps, tell them by clicking the Thanks button.!!
Offline  
Old 08-09-2012, 10:23 AM   #4 (permalink)
BBF Spam Killer Moderator
 
daphne's Avatar
 
Join Date: May 2007
Location: on a sunny beach
Model: Z
OS: 10.2.1.12
PIN: X1ZPY34K
Carrier: VZW
Posts: 9,165
Post Thanks: 122
Thanked 146 Times in 116 Posts
Default Re: Zeus malware

It's been in the news just recently there IS now a Zeus trojan targeting BlackBerry.
Researchers Identify Four BlackBerry Zitmo Variants | SecurityWeek.Com

Aug. 7
Quote:
Security researchers have identified new Zeus malware samples targeting Android and BlackBerry devices.

Despite its significant user base within enterprises, BlackBerry devices have managed to stay off the radar for malware writers. That may be ending, as Kaspersky Lab recently analyzed four new Zeus-in-the-mobile (Zitmo) samples targeting BlackBerry users in Germany, Spain, and Italy, Denis Maslennikov, a researcher at Kaspersky Lab wrote on the company's Securelist blog. These variants were communicating with two command-and-control cell phone numbers associated with a Swedish mobile operator.

Zitmo refers to a version of the Zeus malware that specifically targets mobile devices. Previous Zitmos variants masqueraded as banking security applications or security add-ons to circumvent out-of-band authentication systems used by some financial institutions by intercepting one-time passwords sent via text message and forwarding it to a another cell number that acted as a command-and-control device.

"Yes, finally we've got a ZitMo dropper file for BlackBerry," Maslennikov wrote.

The samples were three .cod files and one .jar file with a .cod file inside. The BlackBerry variants didn't have any major differences from other Zitmo versions in the wild, other than grammatical corrections, Maslennikov said. The list of commands used by the malware remained the same, according to the blog post.
More info in the link

The mobile version of Zeus is called Zitmo and it targets Android as well as BlackBery.
New ZitMo for Android and Blackberry - Securelist
Quote:
Weve got 5 new files of ZitMo: 4 for Blackberry and 1 for Android. As you may know, the Blackberry platform has never been actively targeted by malware. And here we have 4 different samples of ZeuS-in-the-Mobile for Blackberry at once: 3 .cod files and 1 .jar file (with one more .cod inside). Yes, finally weve got a ZitMo dropper file for Blackberry.
__________________
Report spam text messages to 7726
#BlackBerry by choice #BlacBerry 10 is here!

Last edited by daphne : 08-09-2012 at 10:29 AM.
Offline  
Old 08-09-2012, 01:44 PM   #5 (permalink)
Spam Reporter
 
dc/dc's Avatar
 
Join Date: Oct 2005
Location: IAD
Model: 6230
Carrier: Voicestream
Posts: 14,530
Post Thanks: 220
Thanked 345 Times in 311 Posts
Default Re: Zeus malware

Quote:
Originally Posted by daphne View Post
It's been in the news just recently there IS now a Zeus trojan targeting BlackBerry.
Researchers Identify Four BlackBerry Zitmo Variants | SecurityWeek.Com

Aug. 7


More info in the link

The mobile version of Zeus is called Zitmo and it targets Android as well as BlackBery.
New ZitMo for Android and Blackberry - Securelist
Bizarre. I searched the googles and didn't see that link.
__________________
I h8 txtspk.
Offline  
Old 08-09-2012, 02:15 PM   #6 (permalink)
Appleinator
 
Dubdub's Avatar
 
Join Date: Nov 2005
Location: New Hampshire
Model: App5
OS: AJBR549
PIN: Ask
Carrier: ATT & Verizon
Posts: 20,029
Post Thanks: 54
Thanked 782 Times in 742 Posts
Default Re: Zeus malware

I stand corrected. Thanks Daphne.
__________________
-->>BB FAQ

-->>Stinsonddog's Tip Site!

-->>Twitter


If someone helps, tell them by clicking the Thanks button.!!
Offline  
Old 08-09-2012, 03:03 PM   #7 (permalink)
BBF Spam Killer Moderator
 
daphne's Avatar
 
Join Date: May 2007
Location: on a sunny beach
Model: Z
OS: 10.2.1.12
PIN: X1ZPY34K
Carrier: VZW
Posts: 9,165
Post Thanks: 122
Thanked 146 Times in 116 Posts
Default Re: Zeus malware

Quote:
Originally Posted by dc/dc View Post
Bizarre. I searched the googles and didn't see that link.
Easy search: BlackBerry zeus
Google

I see this is hitting more tech sites now.
__________________
Report spam text messages to 7726
#BlackBerry by choice #BlacBerry 10 is here!
Offline  
The Following User Says Thank You to daphne For This Useful Post:
dc/dc (08-09-2012)
Old 08-09-2012, 06:21 PM   #8 (permalink)
Spam Reporter
 
dc/dc's Avatar
 
Join Date: Oct 2005
Location: IAD
Model: 6230
Carrier: Voicestream
Posts: 14,530
Post Thanks: 220
Thanked 345 Times in 311 Posts
Default Re: Zeus malware

Quote:
Originally Posted by daphne View Post
Easy search: BlackBerry zeus
Google

I see this is hitting more tech sites now.
Damn that Google! LOL
__________________
I h8 txtspk.
Offline  
Old 08-13-2012, 09:22 AM   #9 (permalink)
BlackBerry Elite
 
knottyrope's Avatar
 
Join Date: Jan 2008
Location: Massachusetts
Model: Z30
OS: 10.2.1
PIN: t of blood has been taken
Carrier: AT&T-US with I dee ten tee errors
Posts: 6,681
Post Thanks: 270
Thanked 282 Times in 267 Posts
Default Re: Zeus malware

Quote:
Originally Posted by Orinoko View Post
Hi,

Is there any way to block the recently publicised Zeus virus using BES? I know you can block certain software packages from being installed so can this not be utilised?

Thanks.
Yes you can create a software configuration and white list only the apps you want to be allowed.
__________________
irony : many old timer posters have de-evolved into the trolls they once fought
I am on http://supportforums.blackberry.com
BES 10 running sweet for my Z30, Z10 and Q10
Offline  
Old 08-20-2012, 11:27 AM   #10 (permalink)
Thumbs Must Hurt
 
Orinoko's Avatar
 
Join Date: Mar 2007
Location: Manchester, UK
Model: Z10
Carrier: O2
Posts: 133
Post Thanks: 3
Thanked 0 Times in 0 Posts
Default Re: Zeus malware

Thanks for getting back to me, yes I guessed that I would be able to use software configurations to block the threats but do you have any ideas on the names of the software that should be blocked? I look after a few thousand BES linked BB's so although it present we probably wouldn't deploy the 'fix' it is good to be ready in case it escalates.
Offline  
Closed Thread


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads for: Zeus malware
Thread Thread Starter Forum Replies Last Post
Suspected malware. Email automated spam. kamploopstrout BlackBerry Help 3 01-24-2012 10:35 AM
2 of 3 Blackberrys have malware? I don't think so daphne BlackBerry and Mobile Security 5 10-30-2011 10:42 AM
Malware detected on BES KOR BES Admin Corner 0 08-31-2010 09:18 AM
FAQ: Are BlackBerry Devices Affected by Viruses, Trojans, or Other Malware? dc/dc BlackBerry and Mobile Security 33 11-06-2009 03:11 AM
Mobile malware: In-the-cloud defenses - How's yours implemented? noname BES Admin Corner 0 09-19-2008 08:49 AM





Copyright 2004-2014 BlackBerryForums.com.
The names RIM and BlackBerry are registered Trademarks of BlackBerry Inc.