Tuesday, November 25, 2014

Symantec Discovers 'Regin' Spy Code Lurking on Computer Networks - NYTimes.com

Symantec Discovers 'Regin' Spy Code Lurking on Computer Networks - NYTimes.com: Security researchers say they have discovered a sophisticated piece of malicious code spying on researchers, governments, businesses, and critical telecommunications infrastructure since 2008.

The malware, called Regin, was first discovered by Symantec, the antivirus company, which released a white paper describing its findings on Sunday. On Monday, The Intercept, a digital magazine started by the journalist Glenn Greenwald, reported that the Regin malware is part of a decade-long joint operation by the National Security Agency and its British counterpart, the Government Communications Headquarters, or G.C.H.Q. The Intercept report is based in part on disclosures from former N.S.A. contractor Edward J. Snowden.

“In the world of malware threats, only a few rare examples can truly be considered groundbreaking and almost peerless,” Symantec wrote. “What we have seen in Regin is just such a class of malware.”

Symantec found evidence that the malware has been used on targets in 10 countries, primarily Saudi Arabia and Russia, as well as Pakistan, Afghanistan, India, Mexico, Ireland, Belgium and Austria. The Intercept reported Monday that the malware had been used to spy on companies in the European Union, notably Belgacom, a partly state-owned Belgian phone and Internet provider.