Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

A Malware Namely ‘Project Sauron’ Hidden for Five Years


The hacker group called 'Strider' was in the stealth mode for 5 years because cyber-espionage attacks that they carried out are against selected targets all over the world. These online attackers are spying 30 organisations by using the advanced malware piece namely Remsec, in China, Russia, Iran, Sweden, and Belgium since 2011.

The attackers have gained full control over infected machines that enabled them to have access to classified data with the help of a sophisticated code which references to Sauron - 'The Lord of the Rings' title character.

Kaspersky first identified the malware in an unspecified network of government organization during September 2015. Bbc.com posted on August 9th, 2016, quoting Kaspersky as saying that these were usually scientific, government, telecoms, financial and military organisations.

Symantec also said that the malware had been found by them in various other countries that includes a Belgium embassy and in a China airline. Kaspersky in its detailed report dubbed the unknown group 'ProjectSauron', after referring to J.R.R.Tolkein character which was found in hidden malware.

The report entitled 'The ProjectSauron APT' reads, threat actor that is behind the ProjectSauron commands a top-of-the-top modular cyber-espionage platform related to technical sophistication, thus designed to allow long-term campaigns via stealthy survival mechanisms along with numerous methods of exfiltration.

Symantec, a leading software security producer based in California, reports that strings of code are designed to function as a framework allowing ProjectSauron to infect as well as control PC, move across the networks, exfiltrate the data along with releasing other custom modules in the systems.

Tools as well as techniques of various other well-known spyware have been adopted by this unidentified group, agrees Kaspersky. However, Kaspersky said that they don't believe that Flame and ProjectSauron are directly connected.

Attribution cannot be solved while dealing with most advanced threat actors, like ProjectSauron. Till now, neither Symantec nor Kaspersky or other organizations have come forward to expose the dark villains; however Kaspersky does express concerns regarding attributing blame.

» SPAMfighter News - 8/18/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next