Highly Sophisticated Malware Isn't Limited to Relatively High-Profile Sabotage Code like Stuxnet -- Sometimes, it's Designed to Fly Well under the Radar. Symantec has Discovered Regin, a Very Complex Trojan that has been Spying on Everyone from Governments to Individuals since at least 2008. The Malware is Highly Modular, Letting its Users Customize their Attacks depending on Whether they Need to Remote Control a System, Get Screenshots or Watch Network Traffic. More Importantly, it's Uncannily Good at Covering its Tracks. Regin is Encrypted in Multiple Stages, Making it Hard to Know What's Happening, Unless you Capture Every Stage; it Even has Tools to Fight Forensics and it Can Use Alternative Encryption in a Pinch. Researchers at Symantec Suspect that, the Trojan is a Government-Created Surveillance Tool, since it Likely Took "Months, if Not Years" to Create.
If it is Meant for Spying, though, it's Not Clear just Who Wrote the Malware or Why. Unlike Dragonfly and Other Instances of Professionally-Made Malware, Regin's Origin Hasn't been Narrowed Down to a Particular Country or Region. About Half of the Infections Have Taken Place in Russia and Saudi Arabia but, you Can also Find Victims across India, Iran and Multiple European Nations. Also, it's Definitely Not Limited to Telecoms or Other High-Value Targets -- 48% of Known Victims are People and Small Businesses. While Regin Could Easily be Part of an Online Espionage Campaign, it's Hard to Rule Anything Out at this Point.
Info Sources:
http://www.symantec.com/connect/blogs/regin-top-tier-espionage-tool-enables-stealthy-surveillance
http://www.ft.com/intl/cms/s/0/8392d196-7323-11e4-907b-00144feabdc0.html?siteedition=intl#axzz3JuIHzq00
segunda-feira, 24 de novembro de 2014
Sophisticated Malware Has Been Spying on Computers since 2008
14:18
1 comment
The Family Locator App Geozilla can control and adjust the accuracy of locations, have a glance to read more.
ResponderEliminar