'Red October' cyber-attack found by Russian researchers

Status
Not open for further replies.

Gnosis

Level 5
Thread author
Apr 26, 2011
2,779
You guys and gals really need to read this:

http://www.bbc.co.uk/news/technology-21013087

"There is a special module for recovering deleted files from USB sticks," Mr Kamluk said.

"It monitors when a USB stick is plugged in, and it will try to undelete files. We haven't seen anything like that in a malware before."

Also unique to Red October was its ability to hide on a machine as if deleted, said Prof Woodward.

"If it's discovered, it hides.

"When everyone thinks the coast is clear, you just send an email and 'boof' it's back and active again."

Other modules were designed to target files encrypted using a system known as Cryptofiler - an encryption standard that used to be in widespread use by intelligence agencies but is now less common.
 

Payback

New Member
Verified
Jan 7, 2013
325
Thank you,I'll go read it now. Great news -- Also,I feel kind of sad that Russians are actually better in computers than any country (Kasprsky IS/AV/Pure is created in Russia,one of the major kick-butt anti-viruses/IS etc.)
 

Gnosis

Level 5
Thread author
Apr 26, 2011
2,779
They (Dr. Web and Kaspersky) have a lot of free time, a lot of skill, plenty of technology, and Putin to carry them. That can make for some monopolized powers in the anitmalware/malware industry. If they are spying for their leaders, that is a problem. But if they are providing a great product with no bias or clandestine ulterior motives that are detrimental to non-Russians, then that is fabulous. Who really knows what is going on over there, but know that the Russian mafia has their hands in ALL OF IT.
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top