Symantec discovered a spyware or malware that is able to peer data within a computer in a number of countries. In these malicious programs there are references to Sauron, the main antagonist in the trilogy Lord of the Rings.
Based on the search Symantec, the malware has been identified as Remsec. A group of hackers known as Strider use it to spy on a specific target in Belgium, China, Russia, and Sweden.
Ramsec, containing the name Sauron, it is only used to spy on it. Strider did not seem to use it as ransomware, the perpetrator computer program or other destructive tool.
Symantec concludes that the data is successfully stolen by Strider has a high value for a particular state intelligence organizations.
In addition, the Strider group known to have links with other groups named Flammer. The latter group also used the method, engineering attacks, and malicious programs are the same.
"Strider group has been active since about October 2011. During that time, they hide themselves, until now found. The target among others the form of an individual or organization that appeals to intelligence belonging to a country, "wrote Symantec in the security report.
When successfully entered into a computer, Ramsec can move quietly and very effectively. This malicious program makes the hacker to control the infected computer, transfer the data, and install certain modules.
Additionally, malicious programs that contain the name of Sauron's work through the Internet connection. That is, he only joined in temporary memory only, not into the hard drive of the user. This makes regular antivirus will not be able to detect and remove it.
But the ordinary computer users need not worry, Strider and Remsec malicious programs do not target the general public, but only to attack specific targets only.
So far, only 36 are known to exist only attack that occurred in seven organizations from four countries. Of these, four organizations among which there are in Russia.
Based on the search Symantec, the malware has been identified as Remsec. A group of hackers known as Strider use it to spy on a specific target in Belgium, China, Russia, and Sweden.
Ramsec, containing the name Sauron, it is only used to spy on it. Strider did not seem to use it as ransomware, the perpetrator computer program or other destructive tool.
Symantec concludes that the data is successfully stolen by Strider has a high value for a particular state intelligence organizations.
In addition, the Strider group known to have links with other groups named Flammer. The latter group also used the method, engineering attacks, and malicious programs are the same.
"Strider group has been active since about October 2011. During that time, they hide themselves, until now found. The target among others the form of an individual or organization that appeals to intelligence belonging to a country, "wrote Symantec in the security report.
When successfully entered into a computer, Ramsec can move quietly and very effectively. This malicious program makes the hacker to control the infected computer, transfer the data, and install certain modules.
Additionally, malicious programs that contain the name of Sauron's work through the Internet connection. That is, he only joined in temporary memory only, not into the hard drive of the user. This makes regular antivirus will not be able to detect and remove it.
But the ordinary computer users need not worry, Strider and Remsec malicious programs do not target the general public, but only to attack specific targets only.
So far, only 36 are known to exist only attack that occurred in seven organizations from four countries. Of these, four organizations among which there are in Russia.
Posting Komentar