Advanced cyber-espionage malware discovered

A previously unknown group called Strider has been conducting cyberespionage-style attacks against targets in Russia, China, Sweden, and Belgium.

According to Symantec, the group uses an advanced piece of malware known as Remsec (Backdoor.Remsec) to conduct its attacks.

Remsec is a tool that appears to be designed for spying purposes. Its code contains a reference to Sauron, the all-seeing antagonist in Lord of the Rings.

“Strider’s attacks have tentative links with a previously uncovered group, Flamer. The use of Lua modules is a technique that has been used by Flamer. One of Strider’s targets had also previously been infected by Regin,” said Symantec.

Targets

Symantec has found evidence of infections in 36 computers across seven organisations.

Strider’s targets include a number of organisations and individuals located in Russia, an airline in China, an organisation in Sweden, and an embassy in Belgium.

More on security

Samsung Galaxy S7 has Quadrooter vulnerability

Gumtree scams: what to watch out for and how to avoid them

Nigerian scammers infect themselves with own malware

Don't miss the latest news

• Add MyBroadband as a preferred source in Google Search
• Follow MyBroadband on Google News