Menu
Kaspersky Lab “unmasks” long-running cyber-espionage operation

Kaspersky Lab “unmasks” long-running cyber-espionage operation

Security vendor is tipped off to malware campaign following unsuccessful attack on its own products

Kaspersky Lab has discovered a new threat vector involved in global cyber-espionage operations since at least 2007.

Dubbed “The Mask”, or in some cases Careto, the malware comes the way of a cross-platform malware toolkit that includes at least one zero-day exploit.

PCs are not the only ones in the sight of the malware, with Mac OS X, Linux, and potentially even iOS and Android in the line of fire.

The security vendor has already dubbed Mask as “one of the most advanced global cyber-espionage operations to date” for the high degree of sophistication it contains.

Nowhere safe

Mask has so far been collecting sensitive data from the infected systems, and Kaspersky Lab has traced victims of the attack to 31 countries around the world.

Kaspersky Lab A/NZ managing director, Andrew Mamonitis, said no country can be ruled out as a target for the attack, including Australia.

“The total number of affected countries and unique victims could in fact be much higher than those analysed in the report,” he said.

To illustrate his point, Mamonitis points to how Australia was not been immune to previous targeted campaigns such as NetTraveler, which went after local diplomatic missions.

So far the security vendor has found that governments and strategic institutions of all persuasions have been targeted by Mask.

“Coupled with the difficulty with attribution, the motive behind such a wide-ranging attack is difficult to ascertain,” Mamonitis said.

Sign of things to come

Kaspersky Lab was tipped off to the Mask campaign after hackers attempted to exploit a vulnerability in the company’s products fixed five years ago.

As for whether the discovery of Mask will set a precedent for future malware attacks, Mamonitis said the versatility and sophistication of the campaign demonstrates how hackers are becoming "more adept" at pursuing higher level targets.

“The fact that it stands as one of the most advanced campaigns shows that there is potentially growing investment in cyber-espionage attacks,” he said.

“One would have to assume that rather than a one-off incident, it may, unfortunately, be a sign of further things to come.”

Patrick Budmar covers consumer and enterprise technology breaking news for IDG Communications. Follow Patrick on Twitter at @patrick_budmar.

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags kaspersky labsmalware

Featured

Slideshows

Educating from the epicentre - Why distributors are the pulse checkers of the channel

Educating from the epicentre - Why distributors are the pulse checkers of the channel

​As the channel changes and industry voices deepen, the need for clarity and insight heightens. Market misconceptions talk of an “under pressure” distribution space, with competitors in that fateful “race for relevance” across New Zealand. Amidst the cliched assumptions however, distribution is once again showing its strength, as a force to be listened to, rather than questioned. Traditionally, the role was born out of a need for vendors and resellers to find one another, acting as a bridge between the testing lab and the marketplace. Yet despite new technologies and business approaches shaking the channel to its very core, distributors remain tied to the epicentre - providing the voice of reason amidst a seismic industry shift. In looking across both sides of the vendor and partner fences, the middle concept of the three-tier chain remains centrally placed to understand the metrics of two differing worlds, as the continual pulse checkers of the local channel. This exclusive Reseller News Roundtable, in association with Dicker Data and rhipe, examined the pivotal role of distribution in understanding the health of the channel, educating from the epicentre as the market transforms at a rapid rate.

Educating from the epicentre - Why distributors are the pulse checkers of the channel
Kiwi channel reunites as After Hours kicks off 2017

Kiwi channel reunites as After Hours kicks off 2017

After Hours made a welcome return to the channel social calendar last night, with a bumper crowd of distributors, vendors and resellers descending on The Jefferson in Auckland to kickstart 2017. Photos by Maria Stefina.

Kiwi channel reunites as After Hours kicks off 2017
Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow Electronics introduced Tenable Network Security to local resellers in Sydney last week, officially launching the distributor's latest security partnership across Australia and New Zealand. Representing the first direct distribution agreement locally for Tenable specifically, the deal sees Arrow deliver security solutions directly to mid-market and enterprise channel partners on both sides of the Tasman.

Arrow exclusively introduces Tenable Network Security to A/NZ channel
Show Comments