Sophisticated StripedFly Spying Platform Has Infected Over One Million Victims Since 2017
Pro-Russian Winter Vivern hackers exploit webmail flaw to target European orgs, Meta cuts off pro-Palestinian groups citing hacking effort, Biden to unveil major AI EO, iLeakage reveals secrets, more
Check out my latest piece for README, which delves into some recent problems observed in the US vulnerability reporting system.
Researchers at Kaspersky discovered that what had seemed like an innocuous and ineffective crypto miner was a cover for a sophisticated spy platform that has infected more than one million victims worldwide since 2017.
The miner was just one component of a large and complex platform that the researchers call StripedFly. The platform is designed for Windows and Linux-based systems and has numerous plug-ins that give the attackers broad spying functionality. Such functionality is common in nation-state spying platforms but not criminal malware, which the researchers initially took the cryptocurrency miner to be.
The spy components include ones for harvesting credentials from infected machines for siphoning PDFs, videos, databases, and other valuable files, grabbing screenshots, and recording conversations through an infected system’s mi…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.