#科技头条# 【只有斯诺登才知道来历的恶意软件】

#科技头条# 【只有斯诺登才知道来历的恶意软件】据网络安全公司赛门铁克披露,他们发现了一个已潜伏进用户电脑六年之久的恶意程序。连专家也不清楚它由谁设计,具体会做什么,但是可以肯定的是它伪装极高,黑客能用多种途径激活,具有前无古人的威胁。这个程序已在10个国家被发现,尤其是在俄罗斯和沙特,但是在美国本土没有被发现。于是,专家推测,凶手似乎只能是美国政府了。

Experts don"t know where it came from, and aren"t quite sure what it does.

But they do know this: a newly-uncovered cybersecurity threat appears to have been designed by a government, and is "groundbreaking and almost peerless."

Regin, as they"ve dubbed it, is malware that has been lurking in computers for as long as six years, according to Symantec (SYMC, Tech30), the cybersecurity firm that produces Norton Antivirus.

"Its capabilities and the level of resources behind Regin indicate that it is one of the main cyberespionage tools used by a nation state," Symantec said Sunday, explaining that "development took months, if not years, to complete."

The researchers said little to answer several key questions: Who designed it? How widely has it spread? What has it scooped up? What are the risks?

They said Regin has been discovered in at least 10 countries and was most heavily concentrated in Russia and Saudi Arabia.

The United States was not among the countries listed by Symantec.

Regin appears to have been aimed against particular individuals and small businesses. Some telecommunication companies were also targeted, apparently to spy on calls going through the phone networks. The software was also deployed in the hospitality and energy industries.

Symantec said the malware conceals itself well and has several levels of protection. It uses multiple types of encryption, for example, and can communicate with the hacker that deployed it in several different ways.

It also uses a "modular" structure that conceals deeper layers of the malware and makes it "very difficult to ascertain what it is doing," researchers said.

In that respect, it is similar to the Stuxnet worm, which is widely believed to be a U.S.-designed weapon against the Iranian nuclear program. Iran is one of the 10 countries where Symantec says it found the Regin bug.

"Its low key nature means it can potentially be used in espionage campaigns lasting several years," it wrote, and additional components likely "remain undiscovered."


Comments are closed.



无觅相关文章插件