{"id":175291,"date":"2016-08-09T10:10:18","date_gmt":"2016-08-09T08:10:18","guid":{"rendered":"http:\/\/mybroadband.co.za\/news\/?p=175291"},"modified":"2016-08-09T10:12:38","modified_gmt":"2016-08-09T08:12:38","slug":"advanced-cyber-espionage-malware-discovered","status":"publish","type":"post","link":"https:\/\/mybroadband.co.za\/news\/security\/175291-advanced-cyber-espionage-malware-discovered.html","title":{"rendered":"Advanced cyber-espionage malware discovered"},"content":{"rendered":"<p>A previously unknown group called Strider has been conducting cyberespionage-style attacks against targets in Russia, China, Sweden, and Belgium.<\/p>\n<p><a href=\"http:\/\/www.symantec.com\/connect\/blogs\/strider-cyberespionage-group-turns-eye-sauron-targets\" target=\"_blank\"><strong>According to Symantec<\/strong><\/a>, the group uses an advanced piece of malware known as Remsec (Backdoor.Remsec) to conduct its attacks.<\/p>\n<p>Remsec is a tool that appears to be designed for spying purposes. Its code contains a reference to Sauron, the all-seeing antagonist in Lord of the Rings.<\/p>\n<p>\u201cStrider\u2019s attacks have tentative links with a previously uncovered group, Flamer. The use of Lua modules is a technique that has been used by Flamer. One of Strider\u2019s targets had also previously been infected by Regin,\u201d said Symantec.<\/p>\n<h3 class=\"my-4\">Targets<\/h3>\n<p>Symantec has found evidence of infections in 36 computers across seven organisations.<\/p>\n<p>Strider\u2019s targets include a number of organisations and individuals located in Russia, an airline in China, an organisation in Sweden, and an embassy in Belgium.<\/p>\n<p><a  data-lightbox=\"post-image\" href=\"http:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-175295 size-new-size\" src=\"http:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic-640x640.jpg\" alt=\"Strider infographic\" width=\"640\" height=\"640\" srcset=\"https:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic-640x640.jpg 640w, https:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic-768x768.jpg 768w, https:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic-430x430.jpg 430w, https:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic-50x50.jpg 50w, https:\/\/mybroadband.co.za\/news\/wp-content\/uploads\/2016\/08\/Strider-infographic.jpg 940w\" sizes=\"(max-width: 640px) 100vw, 640px\" \/><\/a><\/p>\n<h3 class=\"my-4\">More on security<\/h3>\n<p><a href=\"http:\/\/mybroadband.co.za\/news\/security\/175146-samsung-galaxy-s7-has-quadrooter-vulnerability.html\"><strong>Samsung Galaxy S7 has Quadrooter vulnerability<\/strong><\/a><\/p>\n<p><strong><a href=\"http:\/\/mybroadband.co.za\/news\/security\/174598-gumtree-scams-what-to-watch-out-for-and-how-to-avoid-them.html\">Gumtree scams: what to watch out for and how to avoid them<\/a><\/strong><\/p>\n<p><strong><a href=\"http:\/\/mybroadband.co.za\/news\/security\/175136-nigerian-scammers-infect-themselves-with-own-malware.html\">Nigerian scammers infect themselves with own malware<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A previously unknown group called Strider has been conducting cyberespionage-style attacks.<\/p>\n","protected":false},"author":23,"featured_media":175297,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[27],"tags":[36,38465,38467,411],"class_list":["post-175291","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-active","tag-remsec","tag-strider","tag-symantec"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/175291"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/23"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=175291"}],"version-history":[{"count":2,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/175291\/revisions"}],"predecessor-version":[{"id":175301,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/175291\/revisions\/175301"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/175297"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=175291"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=175291"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=175291"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}