Security researchers have identified a Zbot component designed for Android which steals mobile transaction authentication numbers send by banks via SMS.ZeuS, aka Zbot, is one of the most popular banking trojans. Even though the original author of the malware has retired, the source code is available online for anyone to modify and fit it to their needs.Zbot originally targeted desktop systems and stole financial information and online banking credentials which fraudsters exploited.

via Zbot Targets Android Users – Softpedia.

Security researchers warn that multiple recent Zbot variants are using a forged digital signature in an attempt to bypass antivurs detection. Ironically the digital signature was copied from a ZeuS removal tool developed by Kaspersky Lab.

[..]

There have been isolated cases of digitally-signed malware before, but the practice never really took off, primarily because malware authors believed the effort doesn’t justify the benefits.

[..]

via Zbot Authors Forge Kaspersky Digital Signature – Copy it from ZeuZ removal tool – Softpedia.

A new wave of a Zeus bot (Zbot) variant was spotted taking advantage of Amazon EC2’s cloud-based services for its C&C (command and control) functionalities.

via Zeus “in-the-cloud” – CA Security Advisor Research Blog.