Pro-Syrian hackers are using WhatsApp, Facebook, YouTube and Viber to share malware that is aimed at activists fighting for a regime change in Syria. In addition to Syrian Internet users, people were also targeted in the United States, France, Saudi Arabia, United Arab Emirates, Turkey, Palestine, Israel, Morocco and Lebanon, security researchers noted.
The malware is using remote access tools (RATs) and being shared to groups that support Syrian President Bashar al-Assad. The RAT technology are able to compromise PCs and systems in which they are installed, with attackers stealing credentials, remotely turning on microphones and video cameras, and controlling the infected PCs.
"Total Network Monitor (which is a legitimate application) is inside another sample found, being used with embedded malware for spying purposes," according to Kaspersky Lab researchers. "Offering security applications to protect against surveillance is one of the many techniques used by malware writing groups to get users desperate for privacy to execute these dubious programs."
Although the focus is on state-sponsored attacks from China and Russia, there is growing focus on Pakistan, India, and Syrian-related hackers.
- Xmas Deals at GoodOffer24: Extra 20% OFF Antivirus + FREE Windows 10
- Spring promotion: Windows 10 Pro key $10.55 + Office 2019 Pro $33.96
- xHelper the 'irremovable' malware found in over 45,000 Android devices
- Black Friday at GoodOffer24: Windows 10 Pro for just $10.62 and more
- 50% of coronavirus related domains are being used by hackers, beware!
- > NEXT STORY: Delaware lets family members inherit social media accounts of deceased
- < PREVIOUS STORY: Would police be able to use kill switches to limit public protests?