See other Business/Finance Articles
Title: Advanced Cybercrime Gang ‘Equation’ Closely Linked to NSA
Source:
[None]
URL Source: http://news.antiwar.com/2015/02/16/ ... quation-closely-linked-to-nsa/
Published: Feb 17, 2015
Author: Jason Ditz
Post Date: 2015-02-17 06:28:33 by Ada
Keywords: None
Views: 118
Comments: 3
Malware Targeted Foreign Industry, Governments Over the weekend, it was reported that the NSA was scrambling to get ready for a new “leak” about their operations, which was uncovered by a “non-US” cybersecurity company. Today, Russian-based Kaspersky Labs unveiled a huge cache of information about a cybercriminal gang they are calling “Equation,” and which appears to be tightly connected to the NSA itself. Kaspersky Labs released a 44-page report on Equation (pdf), which describes the group’s suite of malware, used to steal information from industries, corporations, governments, and even some individuals, as the most advanced on the planet. Indeed, Equation’s malware is so successful and so hard to detect, that Kaspersky believes they’ve been in existence since 2001, or possibly as far back as 1996, and they are only now getting a glimpse into their existence. Equation’s suite is said to be extremely modular, with initial Trojans being installed simply to see if the targeted computer’s user might be of interest, and if so depositing payloads of highly advanced software into the operation system, which is almost impossible to detect. Though Kaspersky Labs declined to conclusively link them to the NSA in the report, the connection is impossible to deny, as the early Equation worms appear to be the basis for the Stuxnet worm, which US officials have openly admitted was government handiwork. Equation’s delivery system also appears to have relied on it being quasi- governmental in some cases, intercepting shipments of commercial software being sent to potential targets of interest and replacing the installation CDs with infected alternatives. Kaspersky had examples of infected Oracle software CDs that were apparently created by Equation and delivered to customers instead of the actual CDs. The malware identified infects Windows systems, and appears to successfully target all known modern versions of the Microsoft operating system. The report also notes some of the malware makes reference to Macintosh OSX versions of the malware, though none has yet been conclusively seen in the wild. The malware embeds itself within the operating system, the registry, and into the firmware of the physical hard drives themselves, making it virtually impossible to detect and similarly difficult to remove. The use of hard drive firmware as a method of attack by the NSA had been previously reported, but the sophistication of the attacks are surprising many.
Post Comment Private Reply Ignore Thread
Top • Page Up • Full Thread • Page Down • Bottom/Latest
#1. To: Ada (#0)
Around 1:01 in yesterday's WRH: he says Kaspersky says Equation "is" NSA www.youtube.com/watch? v=scU1q0fj7qE (I never use quote marks for emphasis -- nobody should. Merely signals quoting here.) (Animals are generally better than people -- esp nice gentle herbivorous giraffes.) Ted Crudz: The Mask of Sincerity
They probably have terabytes of info on each and every person living in the US. Except that most are so boring, stupid and useless there's nothing to record about them :-o But it's always good to see you active here, FormerLurker. (The way it's meant to be!) Ted Crudz: The Mask of Sincerity
#2. To: Ada, NeoconsNailed (#0)
Indeed, Equation’s malware is so successful and so hard to detect, that Kaspersky believes they’ve been in existence since 2001, or possibly as far back as 1996, and they are only now getting a glimpse into their existence.
"After tomorrow those SOB's will never embarrass me again. That’s not a threat. That’s a promise.” – LBJ to his mistress Madeleine Brown on the eve of JFK assassination
#3. To: FormerLurker (#2)
Top • Page Up • Full Thread • Page Down • Bottom/Latest