Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Careto malware is frighteningly sophisticated


  • Please log in to reply
8 replies to this topic

#1 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,139 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:09:26 PM

Posted 11 February 2014 - 06:18 PM

This malware is frighteningly sophisticated, and we don’t know who created it

The software, dubbed Careto, is a sophisticated suite of tools for compromising computers and collecting a wealth of information from them. Whoever is behind the malware sends out "spear phishing" e-mails, with addresses designed to be mistaken for the Web sites of mainstream newspapers, such as The Washington Post or the Guardian. If the user clicks on a link, it takes her to a Web site that scans her system for vulnerabilities and attempts to infect it. There are multiple versions of the malicious software designed to attack Windows, Mac OS X and Linux versions, and Kapersky believes there may be versions that attack iOS and Android.

Once Careto has compromised a system, it begins collecting sensitive information from it. The software can "intercept network traffic, keystrokes, Skype conversations, analyse WiFi traffic, PGP keys, fetch all information from Nokia devices, screen captures and monitor all file operations."



Unveiling Careto - The Masked AP

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

BC AdBot (Login to Remove)

 


#2 Ted Striker

Ted Striker

  • Members
  • 1,363 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Canada
  • Local time:08:26 PM

Posted 11 February 2014 - 09:46 PM

This journalist believes that this malware might be state sponsored.

 

http://arstechnica.com/security/2014/02/meet-mask-possibly-the-most-sophisticated-malware-campaign-ever-seen/



#3 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,230 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:26 AM

Posted 12 February 2014 - 02:15 AM

It would seems apparent... even to the untrained eye.

 

edit: or they are very high profile hackers, not at all bothered with quick money, per se.


Edited by TsVk!, 12 February 2014 - 02:18 AM.


#4 HashX

HashX

  • Members
  • 106 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:United Kingdom
  • Local time:02:26 AM

Posted 12 February 2014 - 07:23 AM

It would seems apparent... even to the untrained eye.
 
edit: or they are very high profile hackers, not at all bothered with quick money, per se.

It's quite scary actually..
We could end up with malware in the future that can't be removed from the system yet can steal and gather critical info about the user in which the only way to get rid of it is by getting rid of the PC :/

Malware like Cryptolocker are making this step already by affecting a users PC in a way that can't be reversed..

Edited by HashX, 12 February 2014 - 07:26 AM.

I don't always use Internet Explorer, but when I do, it's to download a different browser.

 


#5 quietman7

quietman7

    Bleepin' Janitor

  • Topic Starter

  • Global Moderator
  • 51,139 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:09:26 PM

Posted 12 February 2014 - 07:32 AM

Fortunately for the home user at this time...

 

Careto is highly targeted. Kaspersky was able to gather data about who was subject to attacks. Most of the attacks targeted government institutions, embassies, oil and gas companies, research organizations, private equity firms and activists.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#6 Brandon Young

Brandon Young

  • Members
  • 95 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Hagerstown
  • Local time:09:26 PM

Posted 12 February 2014 - 09:40 PM

Malware these Days getting worse And worse. Can we make a platform so that Malware can't be ran c: Thats not possible though.



#7 Greg Staples

Greg Staples

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:26 PM

Posted 13 February 2014 - 09:48 PM

It seems to me that the technology has advanced far enough for a computer with protected firmware.  Not just the bios but the operating system kernel as well.

Unfortunately none of the majors have the will to change the paradigm.  Consumers accept the need for anti-virus and anti-malware and don't think outside the box demanding a "bulletproof" OS.  Maybe the answer really is open source. 



#8 TsVk!

TsVk!

    penguin farmer


  • Members
  • 6,230 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Antipodes
  • Local time:11:26 AM

Posted 13 February 2014 - 11:39 PM

Yes the answer is open source... We should have complete access to all of our systems. When you close doors, whatever happens behind it is unknown.



#9 linuxmaster

linuxmaster

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Asheville NC
  • Local time:09:26 PM

Posted 14 February 2014 - 07:33 PM

Did i just read that  it can even  infect a Linux operating system.... Damn it :devil:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users