Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Russian cyberweapons cross-pollinating commercial malware, analysis claims

John E Dunn | July 23, 2014
'Gyges' malware shows ominous mixing of forms

This is starting to look pretty complacent. Evidence of fairy sophisticated attacks from within Russia has trickled out in recent months, in particular the 'Snake' (aka 'Turla' or 'Uroburos') malware that has been traced back as far as 2005. If the Russians have been hard at it in the cyberweapon stakes, their campaigns are not a new phenomenon.

Interestingly, earlier this month Finnish security firm F-Secure published an analysis of another piece of malware called Cosmu, which it suggested could be a Russian cyberweapon that had re-used ancient code from a commercial Trojan.

The inter-mixing of money-making malware and cyberweapons might, in fact, we quite well advanced without that being apparent until now.

Whether this matters is moot. If criminals can access advanced techniques then that makes them more potent. But if criminals can access advanced malware then that reduces the impact of government-level atttacks because they will be detected earlier.

 

Previous Page  1  2 

Sign up for CIO Asia eNewsletters.