Open main menu

SpyEye is a virus that attacks users running the web browsers Safari, Google Chrome, Firefox, Internet Explorer or Opera on both the iOS and Microsoft Windows operating systems.[1] This malware uses keystroke logging and form grabbing to steal user credentials for malicious use.[1][2] SpyEye allows hackers to steal money from online bank accounts and initiate transactions even while valid users are logged into their bank account[3] and insert new fields into a website prompting for user names, passwords, or card numbers allowing hackers to steal money without account holders ever taking notice.[4]

SpyEye came from Russia in 2009 and was sold in underground forums for $500+ in which SpyEye advertised features such as keyloggers, auto-fill credit card modules, email backups, config files (encrypted), http access, Pop3 grabbers, FTP grabbers, and a "Kill Zeus" feature of undetermined purpose.[5]

Authors of SpyEye

After announcing his retirement in 2010, the author of Zeus gave the malware's source code to his biggest competitor, the creator of the SpyEye trojan.[6][7] Aleksandr Andreevich Panin, author of SpyEye, was arrested and sentenced to nine years and six months in prison.[8] Hamza Bendelladj co-author of SpyEye, was arrested and also sentenced to prison, upon which point both men were given a combined sentence of 24+ years after being charged with the theft of hundreds of millions of dollars from banking institutions worldwide.[9]

See also


  1. ^ a b "SpyEye Targets Opera, Google Chrome Users". Krebs on Security. Retrieved 26 April 2011. 
  2. ^ "Trojan: Win32/Spyeye". Retrieved 2016-05-01. 
  3. ^ Kirk, Jeremy. "SpyEye Trojan defeating online banking defenses". Computer World. Retrieved 19 June 2017. 
  4. ^ Kirk, Jeremy. "SpyEye Malware Borrows Zeus Trick to Mask Fraud". PCWorld. Retrieved 19 June 2017. 
  5. ^ Coogan, Peter. "SpyEye Bot versus Zeus Bot". Symantec Official Blog. Retrieved 19 June 2017. 
  6. ^ Diane Bartz (29 October 2010). "Top hacker "retires"; experts brace for his return". Reuters. Retrieved 16 December 2010. 
  7. ^ Internet Identity (6 December 2010). "Growth in Social Networking, Mobile and Infrastructure Attacks Threaten Corporate Security in 2011". Yahoo! Finance. Retrieved 16 December 2010. 
  8. ^ Krebs, Brian (20 April 2016). "SpyEye Makers Get 24 Years in Prison". Krebs On Security. Retrieved 23 March 2017. 
  9. ^ Khandelwal, Swati. "Creators of SpyEye Virus Sentence to 24 Years in Prison". The Hacker News. Retrieved 20 June 2017.