TweakTown
Tech content trusted by users in North America and around the world
5,673 Reviews & Articles | 36,064 News Posts
Weekly Giveaway: Fractal Design Arc Cases Contest (Global Entry!)

Kaspersky uncovers five-year cyber espionage network, makes the Flame malware look like a wimp

A five-year espionage campaign dubbed 'Red October' has been found by Kaspersky

| Hacking & Security News | Posted: Jan 15, 2013 7:32 am

Kaspersky of all companies have found something utterly shocking, an advanced cyber espionage network that makes last year's infamous Flame malware look like a joke. Dubbed Operation Red October, each attack is handcrafted for its victim in order to make sure it 100% works.

 

TweakTown image news/2/7/27857_03_kaspersky_uncovers_five_year_cyber_espionage_network_makes_the_flame_malware_look_like_a_wimp.jpg

 

Red October has been hitting systems across the world since at least May 2007 and carefully chooses its victims spanning over two dozen countries who hold positions in government, military, aerospace, research, trade and commerce, nuclear, oil and other important, vital industries. Investigators aren't sure who is behind the attacks, but it is being reported that Chinese hackers may have created the exploit, while the various malware modules deployed seem to have been created by those who speak Russian.

 

Kaspersky can't put their finger on the source, as it is currently being run through at least two layers of proxy servers across Russia, Germany and Austria. Whoever is involved has some skill, as they've been silently sitting, unknown to the user, in major government and industry computers.

 

TweakTown image news/2/7/27857_04_kaspersky_uncovers_five_year_cyber_espionage_network_makes_the_flame_malware_look_like_a_wimp.jpg

 

While this exploit has been going, the hackers involved have been using two different exploits through Microsoft Word and Excel to infect targets through spear phishing schemes. After the system had been infected, the attackers would take whatever data they could through a bunch of persistent and one-time tasks that would take place with over a thousand modules (malicious files).

 

TweakTown image news/2/7/27857_05_kaspersky_uncovers_five_year_cyber_espionage_network_makes_the_flame_malware_look_like_a_wimp.jpg

 

This could include quickly grabbing information from USB drives, recording keystrokes, taking screenshots, retrieving email from Outlook and various mail servers, collecting browsing history and saved passwords, scanning networks to find more potential victims and much more. Who knows what the end goal of this was, but this information could easily be on the black market.

 

What I don't understand is Kaspersky found this, what the hell were the NSA, CIA, DHS and other various government agencies doing? They all had no idea their networks were infiltrated? I find this very hard to believe.

NEWS SOURCE
Techspot.com

Related Tags

Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.

Do you get our news RSS feed? Get It!

Post a Comment about this news

Latest Tech News Posts

View More News Posts

Latest Downloads

View More Latest Downloads

TweakTown Web Poll

Question: Did EA kill the Battlefield franchise with the terrible BF4 issues?

Yes, Battlefield is doomed

No, Battlefield will live on strong

I'm not sure, but I know EA needs to improve its game

or View the Results

View More Polls

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases
Get TweakTown updates via Facebook!
Just click the "Like" button below