‘Red October’ Espionage Rivals Complexity of Flame

Add Your Comments

(The Hosting News) – A new global malware network rivaling the complexity of the Flame virus has been discovered, Kaspersky Lab noted in a report Monday.

While no evidence links the virus to having been launched by a nation state, it has been active for five years and affects a variety of places across the globe including the Russian Federation, India, Italy, the United States and others.

“The attackers created a multi-functional framework which is capable of applying quick extension of the features that gather intelligence. The system is resistant to C&C server takeover and allows the attacker to recover access to infected machines using alternative communication channels,” commented the security experts in a blog post.

Kaspersky also noted the virus targeted specific entities including networks pertaining to governments, research organizations and diplomatic presences.

The security company, meanwhile, worked with an anonymous source to discover the matter.

Infections discovered were most relevant in Eastern Europe and data vulnerable to the espionage malware included files including extensions such as .txt, .hse, .eml, .csv, .docx, .pdf and a multitude of others.

So if not a state-sponsored virus, who’s responsible? Kaspersky said exploits in the platform were developed by Chinese hackers while malware modules were created by those speaking Russian.

Kaspersky had previously worked to detail other viruses including Flame and Stuxnet – both thought to be launched by western allies such as the U.S. and Israel.

‘Red October’ Espionage Rivals Complexity of Flame

Add Your Comments

You must be logged in to post a comment.