DAWN.COM Logo

Today's Paper | May 04, 2024

Stealthy spy software 'Regin' snooping for years: Symantec

AFP Published November 26, 2014
Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. Confirmed infections in Russia, Saudi Arabia, Mexico, Ireland, India, Afghanistan, Iran, Belgium, Austria and Pakistan. - AFP
Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. Confirmed infections in Russia, Saudi Arabia, Mexico, Ireland, India, Afghanistan, Iran, Belgium, Austria and Pakistan. - AFP
Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. - AFP
Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. - AFP

SAN FRANCISCO: Computer security firm Symantec on Monday said it uncovered stealthy software wielded as part of a years-long spying campaign, most likely by a nation state.

The malicious software, dubbed Regin, has a rare level of sophistication and has been targeting government agencies, telecoms, utilities, airlines, research facilities, private individuals and others since at least 2008, according to Symantec Corporation.

Attacks on telecom firms appeared aimed at getting access to calls being routed through networks.

“Regin is a highly complex threat which has been used in systematic data collection or intelligence gathering campaigns,” the Silicon Valley-based computer security firm said in a paper detailing the threat.

“The development and operation of this malware would have required a significant investment of time and resources, indicating that a nation state is responsible. “Regin was found mainly in 10 countries, but more than half of infections discovered were in Russia and Saudi Arabia, according to Symantec researchers.

Regin's capabilities include letting hackers snap screen-shots, steal passwords, monitor network traffic, take files or tap into mobile telephone calls, researchers said.

The “backdoor-type Trojan” takes great measures to hide its presence as well as any data it is stealing, according to Symantec.

“Regin's developers put considerable effort into making it highly inconspicuous,” the report said.

“Its low key nature means it can potentially be used in espionage campaigns lasting several years. “Regin may have taken years to make, according to Symantec, which said the tool could be used for mass surveillance.

Nearly half the infections discovered targeted small businesses and private individuals.

Researchers found Regin infected a variety of organizations from 2008 to 2011, only to be withdrawn, though a new version of the malicious software appeared last year.

Symantec did not indicate who it thought might be behind the cyber-espionage tool.

Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. Confirmed infections in Russia, Saudi Arabia, Mexico, Ireland, India, Afghanistan, Iran, Belgium, Austria and Pakistan. - AFP
Regin operates on 6 levels control the mouse take screenshots Regin can recover deleted files steal passwords. Only the Trojan horse that gains access is visible. The others are encrypted. Confirmed infections in Russia, Saudi Arabia, Mexico, Ireland, India, Afghanistan, Iran, Belgium, Austria and Pakistan. - AFP

Read more

On DawnNews
Dawn News English
Comments (18) Closed
Jatt
Nov 26, 2014 04:01pm
Let us use Typewriters again ....
Recommend 0
K
Nov 26, 2014 04:16pm
Let me guess the nation....US
Recommend 0
edwardian
Nov 26, 2014 05:02pm
@Jatt Even a software is developed to analyse the typed paper that, what kind of typewriter is used and which person may have typed by analysing the typing fingers pressure on every key, knowing the individual's typing habits.
Recommend 0
Hashim khan
Nov 26, 2014 05:51pm
Gathering information is one task but then to process it for some useful purpose is another mountainous task.
Recommend 0
Lucky Star
Nov 26, 2014 06:38pm
@K Israel
Recommend 0
Ajaya K Dutt
Nov 26, 2014 06:46pm
@K -It is China. It has been confirmed that Chinese Army is most active player in hacking into even commercial network.
Recommend 0
Vishnu
Nov 26, 2014 06:57pm
Is it OS specific? or just need web interface?!
Recommend 0
Shuaib Bhat
Nov 26, 2014 07:00pm
Which country has problems with Saudia, Russia, India and Pakistan at the same time? I think they'd be more interested in China? It may be that China discovered the virus?
Recommend 0
John
Nov 26, 2014 09:11pm
Where are so called Indian tech gurus???
Recommend 0
AK
Nov 26, 2014 10:46pm
Who else can it be other than Israel with its close ties o NSA. Actually, I have no doubt that its them.
Recommend 0
Modi with no wife
Nov 27, 2014 12:33am
@K ...or Israel!
Recommend 0
Modi with no wife
Nov 27, 2014 12:36am
@John Indian over hyped tech gurus are applying for VH-1 visas queuing at the US embassy.
Recommend 0
Kamal
Nov 27, 2014 04:55am
Its OK. There is always a price or compromise undertaken when you use someone else's invention and for almost free. The most advanced information viruses and threats will go away once you stop using the medium - Internet and Cell Phones. Simple. Typewriter is a great idea, as long as you don't connect the typewriter to the Internet!!
Recommend 0
Jatt
Nov 27, 2014 07:27am
@edwardian earlier typewriters did not use electricity, so where will the software run? and how will it transmit the data? friend, we will have to revert back to old times as Germany and Russians are thinking to use typewriters again... I remember typing on them....
Recommend 0
Ahmed
Nov 27, 2014 10:48am
@Kamal: And I always wondered who could behave like "SHAH SAY BERH KER SHAH KA WAFADAAR". FYI Computer and telecommunications market amounts to $700 billion globally. Go ahead read the market analysis reports from Yole Developpment and ITRS.net. They are big business and makinf lot of money out of it. So much for ... "... someone else's invention and for almost free ...". Get a grip and stop listening to HN and likes in the media.
Recommend 0
Ahmed
Nov 27, 2014 10:51am
@Kamal: And I always wondered who could behave like "SHAH SAY BERH KER SHAH KA WAFADAAR". FYI Computer and telecommunications market amounts to $700 billion globally. Go ahead read the market analysis reports from Yole Developpment and ITRS.net. They are big business and makinf lot of money out of it. So much for ... "... someone else's invention and for almost free ...". Get a grip and stop listening to HN and likes in the media.
Recommend 0
Ahmed
Nov 27, 2014 11:42am
@Kamal: And I always wondered who could behave like "SHAH SAY BERH KER SHAH KA WAFADAAR". FYI Computer and telecommunications market amounts to $700 billion globally. Go ahead read the market analysis reports from Yole Developpment and ITRS.net. They are big business and makinf lot of money out of it. So much for ... "... someone else's invention and for almost free ...". Get a grip and stop listening to HN and likes in the media.
Recommend 0
Smitha34
Nov 28, 2014 12:24pm
Hi, yup this post is truly fastidious and I have learned lot of things from it kfgedacfeaefedeb
Recommend 0

Latest Stories

dawn images site

Most Popular

01
02
03
04
05
06
07
08
09

Must Read

Opinion

Editorial

Under siege
Updated 03 May, 2024

Under siege

Whether through direct censorship, withholding advertising, harassment or violence, the press in Pakistan navigates a hazardous terrain.
Meddlesome ways
03 May, 2024

Meddlesome ways

AFTER this week’s proceedings in the so-called ‘meddling case’, it appears that the majority of judges...
Mass transit mess
03 May, 2024

Mass transit mess

THAT Karachi — one of the world’s largest megacities — does not have a mass transit system worth the name is ...
Punishing evaders
02 May, 2024

Punishing evaders

THE FBR’s decision to block mobile phone connections of more than half a million individuals who did not file...
Engaging Riyadh
Updated 02 May, 2024

Engaging Riyadh

It must be stressed that to pull in maximum foreign investment, a climate of domestic political stability is crucial.
Freedom to question
02 May, 2024

Freedom to question

WITH frequently suspended freedoms, increasing violence and few to speak out for the oppressed, it is unlikely that...