Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is this the most advanced malware ever?


  • Please log in to reply
7 replies to this topic

#1 PuReinSAniTY

PuReinSAniTY

  • Members
  • 432 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:in a basement
  • Local time:08:46 AM

Posted 01 June 2015 - 05:30 PM

HOLY CRAP...HERE'S THE BIG ONE!!!!

 

this malware has been around a couple of months but has a massive target list... it targets governments, military bases and the gas company that you always go to down the road. It's called "the mask" or "careto" as some people call it

 

As kaspersky lab has said " What makes The Mask special is the complexity of the toolset used by the attackers. This includes an extremely sophisticated malware, a rootkit, a bootkit, Mac OS X and Linux versions and possibly versions for Android and iOS (iPad/iPhone). The primary targets are government institutions, diplomatic offices and embassies, energy, oil and gas companies, research organizations and activists. Victims of this targeted attack have been found in 31 countries around the world – from the Middle East and Europe to Africa and the Americas." 

 

Now you have to admit it is BADASS and the author is still unknown...They think the author is native to spanish language and that's all they know about the author, Kaspersky labs analysis report "The Mask campaign relies on spear-phishing e-mails with links to a malicious website. The malicious website contains a number of exploits designed to infect the visitor, depending on system configuration. Upon successful infection, the malicious website redirects the user to the benign website referenced in the e-mail, which can be a YouTube movie or a news portal."

 

 

More can be found here.

http://www.kaspersky.com/about/news/virus/2014/Kaspersky-Lab-Uncovers-The-Mask-One-of-the-Most-Advanced-Global-Cyber-espionage-Operations-to-Date-Due-to-the-Complexity-of-the-Toolset-Used-by-the-Attackers

 

and here

http://www.itproportal.com/2014/02/11/introducing-the-mask-one-of-the-most-advanced-malware-threats-ever-discovered/

 

 

 


they call me te java mayster


BC AdBot (Login to Remove)

 


#2 PhotoAce

PhotoAce

  • Members
  • 165 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:New Zealand
  • Local time:11:16 AM

Posted 01 June 2015 - 07:48 PM

That was 14 months ago. Is there a more recent report of this terrible danger?


Edited by PhotoAce, 01 June 2015 - 07:56 PM.


#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,288 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:16 PM

Posted 01 June 2015 - 09:57 PM

That was 14 months ago. Is there a more recent report of this terrible danger?

All the links I have seen are from Feb 2014.

This Careto wikipedia article listed a link for April 2015 but it too goes to a 2014 write up.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 PhotoAce

PhotoAce

  • Members
  • 165 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:New Zealand
  • Local time:11:16 AM

Posted 01 June 2015 - 10:27 PM

It's a pity irony doesn't work well on the internet.



#5 PuReinSAniTY

PuReinSAniTY
  • Topic Starter

  • Members
  • 432 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:in a basement
  • Local time:08:46 AM

Posted 01 June 2015 - 10:39 PM

I feel like facepalming myself... so i will :facepalm: again i should of done my research but i swear that this was from a couple of moths ago...


they call me te java mayster


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,288 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:16 PM

Posted 02 June 2015 - 06:30 AM

Don't worry. Others may have missed the original information last year and your topic may have helped them learn something.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 PuReinSAniTY

PuReinSAniTY
  • Topic Starter

  • Members
  • 432 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:in a basement
  • Local time:08:46 AM

Posted 02 June 2015 - 06:57 PM

You just made me feel a lot better by saying people can learn from this...thank you quietman7.

they call me te java mayster


#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,288 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:16 PM

Posted 02 June 2015 - 07:09 PM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users