Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


GovRat 2.0 Malicious Program on Sale to Attack US Government

InfoArmor a cybersecurity firm has detected a sophisticated malware piece that's named GovRat, employed for carrying out cyber espionage operations on entities most recently the government of United States, as it scours the shady regions of World Wide Web.

GovRat, evolved to the latest strain is an outcome of certain malicious program whose debut was in November 2015. Hackers use this strain for getting into victims' PCs and then capture files, hijack usernames and passwords, and/or upload malware remotely.

The updated version of GovRat to v2.0 has special capabilities that make it highly sophisticated. In particular therefore, miscreants selling it have dubbed GovRat so because they intend to supply it to some specific hackers such as those attacking government agencies.

The latest items on TheRealDeal underground forum include GovRat which has been priced 2.5740 Bitcoins i.e. USD1,600, however, source code of the malware can be accessed via spending USD6,000.

Komarov explains that GovRat v2.0's key targets because of its features of enhanced anonymity as well as network sniffing include scientific research teams and government agencies.

A research paper providing in-depth information tells that GovRat victims are continuously increasing because there are many hacker buyers for the malware which key members belonging to Hell one secretive forum are offering. Ibtimes.co.uk posted this, September 12, 2016.

InfoArmor says that the main perpetrator of GovRat goes by the handle "popopret" a web intruder who called himself "bestbuy" earlier. As per the research, this web hacker has over time attacked numerous federal staffers.

A rival of "popopret" called "PoM," notes the research paper, is a hacker who charges fees for providing access to more than 30K credentials filched from government of United States, educational organizations and research groups.

According to InfoArmor, this list of 30,000 credentials is very useful for its buyers as it would help for spamming government officers, entice victims onto certain GovRat 2.0 serving website, or for proliferating the malware through e-mail attachment.

Moreover, InfoArmor states that Popopret has joined crooks selling false digital certificates, making customers go their way in order that they become capable of keeping signed in GovRat off AV software.

» SPAMfighter News - 9/16/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page