The researchers at Kaspersky have found a new sophisticated malware sample that has infected victims and evaded detection since 2012. Besides infecting Windows computers, the attackers behind the malware also seem to have hijacked Microtik routers to help deliver the malware. The sample also uses many sophisticated techniques to evade forensic software, install with a kernel-level driver, and hide files in seemingly unused areas of your hard drive. Watch the video below for more details about this likely nation-state attack, and what you should do to protect yourself from the sophisticated malware of the future.
Episode Runtime: 6:41
Direct YouTube Link: https://www.youtube.com/watch?v=yNd5j-SXocM
EPISODE REFERENCES:
- Router hijacking Slingshot malware affects 100 victims – Wired
- Sophisticated malware attackers Microtik routers – Engadget
- Kaspersky’s Slingshot APT announcement – Kaspersky
- More detailed Slingshot FAQ – Securelist
- Kaspersky’s full Slingshot technical whitepaper [PDF] – Kaspersky (via AWS)
—Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply