U.S. and U.K. Spy Agencies Likely Source of Malware Attacks on EU, Russian and Saudi Computers

Friday, November 28, 2014
By Paul Martin

Steve Straehley
AllGov.com
Friday, November 28, 2014

Cyberwarriors are at it again, this time with a malicious program called Regin that has infected computers in Russia, Saudi Arabia and other countries and is so complex that security experts say it probably came from the United States, Britain or another Western government.

A Belgian cryptographer, Jean Jacques Quisquater, was one victim of a Regin attack, according to computer security firm Kapersky Lab. Another victim was an unnamed Middle Eastern country. “In this specific country, all the victims we identified communicate with each other, forming a peer-to-peer network. The P2P network includes the president’s office, a research center, educational institution network and a bank,” Kapersky reported on its blog.

Many countries, including China and Russia, engage in cyberwarfare, but those nations don’t appear to be the source of Regin. “We believe Regin is not coming from the usual suspects. We don’t think Regin was made by Russia or China,” Mikko Hypponen, chief research officer at F-Secure, told The Guardian. The only other countries thought to have the capability to create Regin are the United States, Britain and Israel.

There have been no incidents of Regin attacks in any of the “Five Eyes” countries—Australia, Canada, New Zealand, the UK and the U.S.—which comprise an intelligence alliance that dates back to World War II.

The virus has been found on servers belonging to Belgacom, the partly government-owned telecom company which was under surveillance by British intelligence and certain European Union systems that had been targeted by the U.S. National Security Agency. Quisquater was hit by Regin while investigating Belgacom.

“Having analyzed this malware and looked at the [previously published] Snowden documents,” Ronald Prins, a security expert whose company Fox IT was hired to remove the malware from Belgacom’s networks, told The Intercept, “I’m convinced Regin is used by British and American intelligence services.”

The Rest…HERE

Comments are closed.

Join the revolution in 2018. Revolution Radio is 100% volunteer ran. Any contributions are greatly appreciated. God bless!

Follow us on Twitter