Kaspersky Labs suspects the Careto malware to have been developed by a Spanish-speaking nation-state. They say it's one of the most advanced systems they've seen and is run by people who have a grasp of operational security.

Edit: an interesting bit from the longer analysis: "the malware is digitally signed with a valid certificate (since 2010) from an unknown or fake company, called TecSystem Ltd:" which means that the developers got into whoever validates these certificates. They also had access to a 0-day developed by VUPEN which reported having only sold it to state governments.

Page generated Sep. 23rd, 2017 06:02 pm
Powered by Dreamwidth Studios