Author Topic: Espionage Group Turla Tweaks Carbon Backdoor Malware with New Variants  (Read 33 times)

0 Members and 1 Guest are viewing this topic.

Offline Quizmaster

  • Flying Nurse
  • Seasonal Competition Team
  • *
  • Posts: 23301
    • Smokey's Security Forums
  • .: Surf Queen
Espionage Group Turla Tweaks Carbon Backdoor Malware with New Variants
« Reply #1 on: March 31, 2017, 03:24:55 AM »
Espionage Group Turla Tweaks Carbon Backdoor Malware with New Variants
31 March 2017, 12:48 am

Russian espionage group Turla has been working on various tools for years, including several new versions of Carbon, a second stage backdoor malware. 

The discovery was made by researchers from ESET who claim that this malware is still under active development. Since the group is well known for changing its tools once they are exposed, it's not that big of a surprise that they're pushing version after version, changing mutexes and file names between two major versions. 

It seems that the Turla group usually works in multiple stages, first doing reconnaissance on their victim's systems before deploying their sophisticated tools, including Carbon. 

Researchers claim that a "classic" Carbon compromise chain starts with a user receiving a spearphishing email or visiting a compromised website, typically one that the user visits regularly. One this attack is succes... (read more)

Source: Softpedia News / Security

>> To obtain the full Softpedia Security News article, click the link in the first post line <<

 


Except where otherwise stated, all content, graphics, banners and images included © 2006 - 2018 Smokey Services™ -- All rights reserved
Design board graphics, banners and images by DSTM & PseFrank

This site does not store profiling-, tracking-, third-party and/or any other non-essential cookie(s) on client computers and is fully compliant with the EU ePrivacy Directive
Smokey's does not use any Web Analytics/Analysis Service, and also does not use any browser fingerprinting techniques



Smokey's also provides free fully qualified Log / Malware Analysis & Removal Help and System Health Checks