Amazon EC2 security breach |
|
We're big believers in cloud computing. Like any computing platform, clooud computing has its risks. We use Rackspace because it has superior security features. But we always advise our clients to practice security as if their lives depended on it. Black-hat hackers got into an unnamed website hosted on Amazon's servers then proceeded to install an illegal command and control infrastructure.
The Zeus Trojan is a keylogger designed to steal data such as login credentials, account numbers and credit card information. It creates fake HTML forms on banking login pages to allow hackers to steal user data. This particular botnet has been linked to around $100 million in bank fraud in 2009. Although we don't yet have details on exactly how the website in question was hacked, we have learned that the software has been removed from the Amazon cloud. This incident is the first example of malware being found on AWS' infrastructure. http://www.readwriteweb.com/archives/zeus-botnet-amazon-cloud-ec2.php#comment-174027 |
