GameOver Zeus: Computer users given fortnight warning over virus threat

Over 15,000 machines in UK infected with virus used to steal banking data

Thousands of computer users in Britain were warned today that they have two weeks to take action to protect their machines against a powerful computer virus used to extort millions of pounds from victims worldwide.

The National Crime Agency said the two-week window had been opened after an operation led by the FBI managed to take control of servers used to control the “highly sophisticated” malicious software which has been stealing personal and financial data worldwide.

More than 15,000 machines in the United Kingdom are believed to have been infected with the virus, known as GameOver Zeus, which has been tailored by a criminal gang based in Russia and the Ukraine to search for files that will allow access to banking or financial information. The FBI believes that GameOver Zeus has been responsible for $100m (£60m) in losses.

The virus also distributes another particularly aggressive “malware” programme, called CryptoLocker, which encrypts all files on a target’s computer, including personal photographs, and then demands a “ransom” of about £300 within a specified time limit to unlock the file.

According to FBI estimates, nearly 250,000 computers worldwide have been infected with CryptoLocker since it emerged in April and it has so far been used to extort payments of more than $27m (£16m). Up to a million machines worldwide are thought to have been infected with GameOver Zeus.

Internet service providers will now contact thousands of customers believed to have been affected by Gameover Zeus, which is distributed via links or attachments in unsolicited emails, offering advice on how to update anti-virus software to disable the virus. A website set up to provide this information appeared to be offline last night.

Andy Archibald, deputy head of the NCA’s cyber-crime unit, said: “Nobody wants their personal financial details, business information or photographs of loved ones to be stolen or held to ransom by criminals. By making use of this two-week window, huge numbers of people in the UK can stop that from happening.”

The warning comes after the FBI and agencies in 10 other countries claimed success in their efforts to crack down on the criminal gang behind the viruses by launching a simultaneous attack on servers used by the gang to control their operation.

The GameOver Zeus malware creates a “botnet”, a network of computers that spread the viruses and transfer banking information back to the gang. Information received by the criminals is then used to initiate or hijack electronic money transfers and direct money into bank accounts overseas.

The FBI said on Monday that it believed it had identified a ringleader of the gang, a Syrian-born Russian called Evgeniy Mikhailovich Bogachev, who remains at large but is now facing 14 criminal charges alleging that he is the “administrator” of GameOver Zeus. He is also accused of being a leader of the “tightly knit gang” behind CyberLocker. There were unconfirmed reports last night that one of the suspects is British.

James Cole, the US Deputy Attorney General, said: “These schemes were highly sophisticated and immensely lucrative, and the cyber criminals did not make them easy to reach or disrupt.”

From a charity worker in London to a plastics manufacturer in Pennsylvania, the victims of Gameover Zeus and CyberLocker viruses are spread across the world and from all walks of life.

The FBI said last night that it had charged a suspected ringleader of the gang behind the malware with involvement in wire fraud after $824,000 (£491,000) was taken from the bank account of Haysite Reinforced Plastics in northwestern Pennsylvania in a single day in 2011.

Going viral: malware victims across the globe

A separate civil complaint names alleged victims including a native American tribe, a police department in Massachusetts and a pest control company in North Carolina.

Neither “botnets” nor “ransomware” are new. But investigators have been taken aback by the sophistication of these particular viruses. According to research by the University of Kent, up to 40 per cent of victims of CyberLocker have decided to pay the ransom, potentially raising million of pounds for the gang.

In one case, a 35-year-old charity worker had her laptop infected with CyberLocker and received a message on her machine giving her 95 hours to pay a $300 (£179) fee to unlock files including photographs and work documents.

The victim said she was refusing to make the payment.

Be secure: protective software

Anti-cybercrime experts today advised computer users to update their internet security software and download a free tool to thwart the powerful viruses.

The not-for-profit organisation set up to provide advice to companies and domestic users said it had put in place measures which would help to defeat GameOver Zeus and CryptoLocker.

The National Crime Agency advised users to consult the Government-backed getsafeonline.org website to download the tailored anti-virus software provided by eight companies.

But Get Safe Online apologised on Monday after its website crashed under the number of requests to view its content.

In a statement, chief executive Tony Neate said: “We have been overwhelmed by the interest of those trying to take action to protect themselves by visiting our page.”

Life and Style
ebookNow available in paperback
ebooks
ebookPart of The Independent’s new eBook series The Great Composers
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    Recruitment Genius: IT Infrastructure Engineer

    £30000 - £40000 per annum: Recruitment Genius: Our client is looking to find a...

    Recruitment Genius: IT Engineer

    £21000 - £23600 per annum: Recruitment Genius: An exciting opportunity to join...

    Ashdown Group: IT Support Analyst - Liverpool - up to £28,000

    £22000 - £28000 per annum: Ashdown Group: This is a large multi-site operation...

    Recruitment Genius: Salesforce Developer

    £50000 - £65000 per annum: Recruitment Genius: Due to continued business growt...

    Day In a Page

    The saffron censorship that governs India: Why national pride and religious sentiment trump freedom of expression

    The saffron censorship that governs India

    Zareer Masani reveals why national pride and religious sentiment trump freedom of expression
    Prince Charles' 'black spider' letters to be published 'within weeks'

    Prince Charles' 'black spider' letters to be published 'within weeks'

    Supreme Court rules Dominic Grieve's ministerial veto was invalid
    Distressed Zayn Malik fans are cutting themselves - how did fandom get so dark?

    How did fandom get so dark?

    Grief over Zayn Malik's exit from One Direction seemed amusing until stories of mass 'cutting' emerged. Experts tell Gillian Orr the distress is real, and the girls need support
    The galaxy collisions that shed light on unseen parallel Universe

    The cosmic collisions that have shed light on unseen parallel Universe

    Dark matter study gives scientists insight into mystery of space
    The Swedes are adding a gender-neutral pronoun to their dictionary

    Swedes introduce gender-neutral pronoun

    Why, asks Simon Usborne, must English still struggle awkwardly with the likes of 's/he' and 'they'?
    Disney's mega money-making formula: 'Human' remakes of cartoon classics are part of a lucrative, long-term creative plan

    Disney's mega money-making formula

    'Human' remakes of cartoon classics are part of a lucrative, long-term creative plan
    Lobster has gone mainstream with supermarket bargains for £10 or less - but is it any good?

    Lobster has gone mainstream

    Anthea Gerrie, raised on meaty specimens from the waters around Maine, reveals how to cook up an affordable feast
    Easter 2015: 14 best decorations

    14 best Easter decorations

    Get into the Easter spirit with our pick of accessories, ornaments and tableware
    Paul Scholes column: Gareth Bale would be a perfect fit at Manchester United and could turn them into serious title contenders next season

    Paul Scholes column

    Gareth Bale would be a perfect fit at Manchester United and could turn them into serious title contenders next season
    Inside the Kansas greenhouses where Monsanto is 'playing God' with the future of the planet

    The future of GM

    The greenhouses where Monsanto 'plays God' with the future of the planet
    Britain's mild winters could be numbered: why global warming is leaving UK chillier

    Britain's mild winters could be numbered

    Gulf Stream is slowing down faster than ever, scientists say
    Government gives £250,000 to Independent appeal

    Government gives £250,000 to Independent appeal

    Donation brings total raised by Homeless Veterans campaign to at least £1.25m
    Oh dear, the most borrowed book at Bank of England library doesn't inspire confidence

    The most borrowed book at Bank of England library? Oh dear

    The book's fifth edition is used for Edexcel exams
    Cowslips vs honeysuckle: The hunt for the UK’s favourite wildflower

    Cowslips vs honeysuckle

    It's the hunt for UK’s favourite wildflower
    Child abuse scandal: Did a botched blackmail attempt by South African intelligence help Cyril Smith escape justice?

    Did a botched blackmail attempt help Cyril Smith escape justice?

    A fresh twist reveals the Liberal MP was targeted by the notorious South African intelligence agency Boss