Researchers Go Inside BlackEnergy Malware

Conocimiento pertenece al mundo
Tweet about this on TwitterShare on FacebookShare on LinkedInShare on Google+Share on StumbleUponShare on TumblrShare on RedditPin on PinterestEmail this to someone

BlackEnergy was first identified several years ago. Initially, BlackEnergy’s custom plugins were used for launching distributed denial-of-service attacks (DDoS). As time went on however, Kaspersky Lab researchers noted, BlackEnergy2 was seen downloading custom spam and banking information-stealer plugins. Eventually, the malware was adopted by the Sandworm team, which has been linked to cyber-espionage.

BlackEnergy Malwar
“The BlackEnergy malware is crimeware turned APT tool and is used in significant geopolitical operations lightly documented over the past year,” Kaspersky Lab researchers blogged Kurt Baumgartner and Maria Garnaeva. “An even more interesting part of the BlackEnergy story is the relatively unknown custom plugin capabilities to attack ARM and MIPS platforms, scripts for Cisco network devices, destructive plugins, a certificate stealer and more.”

Source:http://www.securityweek.com/researchers-go-inside-blackenergy-malware

Conocimiento pertenece al mundo
Tweet about this on TwitterShare on FacebookShare on LinkedInShare on Google+Share on StumbleUponShare on TumblrShare on RedditPin on PinterestEmail this to someone
One Comment

Add a Comment