NO ONE knows who lies behind Zeus. Security experts believe he or she is Russian, although no one is completely sure. But what they all agree is that Zeus is the most pernicious ''Trojan Horse'' on the internet. During the past four years it has infected millions of PCs, taking control of the computer and stealing personal banking details.
Microsoft has fought a running battle against Zeus, which is one of the most difficult types of malware to detect - but the great fear among cybercrime experts is no longer home computers. A new strain of Zeus, dubbed ''Zitmo'' (it stands for ''Zeus in the mobile'') has begun to exploit a huge hole in personal banking security: the smartphone in your pocket.
In the past fortnight, this malicious new version of Zeus, which attacks phones using the Android operating system, has sparked intense concern among security companies. One major US internet security provider, Trusteer, claimed Google Android is ''fraudsters' heaven''. Trusteer chief executive Mickey Boodaei said in a blog: ''Bad news: fraudsters have all the tools they need to effectively turn mobile malware into the biggest customer security problem we've ever seen.''
But it's not just Zeus that smartphone customers should be worrying about, according to Alex Fidgen of MWR InfoSecurity, one of the biggest cybercrime-busting outfits in Britain. It legally hacks into computers to test security. More recently it has turned its attention to smartphones and found that it can crack open every new handset it sees.
''The mobile phone industry is not fit for purpose, especially for financial transactions,'' says Fidgen. ''The evidence is irrefutable. You cannot be assured of security with modern smartphones. As soon as the handset is compromised, then any data is up for grabs.''
Fidgen says the fault lies with the handset manufacturers rather than the network providers or banks. In the race to bring new phones and new features to the market, many have left security low on the agenda. Modern smartphones, particularly when they are used in public Wi-Fi hot spots, can become fatally compromised. Trojans can enter a smartphone in many ways. All you have to do is click on a link or attachment that contains the virus, and within seconds it can secretly seize control. That link might be a TinyURL in Twitter. The attachment could be a vCard, the standard format for sending a business card to a phone.
Or it could be that you are accessing a website in a cafe. At Wi-Fi hot spots, fraudsters create bogus gateways, known as ''evil twins'', to which the latest mobile phones will automatically connect. Once a connection is established, all the information passing through the gateway can be read directly or decrypted, allowing fraudsters to harvest user names, passwords and messages. Until now, these attacks have been rare. But experts say that's just because smartphones are still taking off. ''We're walking into a minefield,'' says Fidgen, who has been warning about the risks for several months, ''but nobody's bloody listening.''
Sign up for Computerworld eNewsletters.