Kaspersky has revealed an American spyware program.

[Детективное агентство Тула]

Ivan Tkachev, Maria Bondarenko
Kaspersky Lab has discovered a unique cyber espionage program that can access information on most computers in the world. The investigation indicates the connection of hackers with the NSA

The US National Security Agency came up with the idea of hiding spyware on hard drives manufactured by Western Digital, Seagate, Toshiba and other leading manufacturers, thus gaining access to information on most computers in the world. This was reported by Reuters, citing a study by Kaspersky Lab and testimony of former NSA employees. According to the results of many years of observation, Kaspersky Lab was able to uncover the most complex and sophisticated cyber espionage system known to date. The company's specialists found personal computers in 30 countries infected with one or more of these spyware programs. The largest number of infected computers, according to her, was in Iran, as well as Russia, Pakistan, Afghanistan, China, Mali, Syria, Yemen and Algeria. Most often, computers were attacked in government and military institutions, telecommunications companies, banks, energy companies, nuclear research companies, media companies and Islamic activists. Kaspersky Lab does not name the specific country behind the spyware campaign. However, he clarifies that it is closely connected with Stuxnet, which was developed by order of the NSA to attack Iran’s nuclear program facilities. A former NSA official told Reuters that Kaspersky’s findings are correct. According to him, current agency employees rate these spyware programs as highly as Stuxnet. Another former intelligence official confirmed that the NSA had developed a valuable way of hiding spyware on hard drives, but said it did not know what spyware tasks were assigned to them. NSA spokeswoman Vanie Vines declined to comment.

Breakthrough in cyber espionage

On Monday, Kaspersky published the technical details of its research, which should help institutions caught in a spyware attack detect malware, some of which date back to 2001. As researchers at Kaspersky emphasize, the creators of spyware platforms have made a “tremendous technological achievement” by developing modules that can reprogram factory firmware on hard drives. Such a deep infection allowed attackers to maintain control over the victim’s computer even if the disk was formatted or the operating system was reinstalled. According to Kaspersky, the "mysterious module" is able to penetrate the hard drive firmware of more than a dozen manufacturers, including Seagate, Western Digital, Toshiba, Maxtor, Micron Technology, IBM. These brands cover almost the entire hard drive market. Western Digital, Seagate, and Micron told Reuters that they knew nothing about these spyware modules. Toshiba and Samsung declined to comment on Kaspersky’s investigation. Despite the fact that these sophisticated worms could be implanted in thousands of hard drives, in practice, hackers were selective and subjugated only the computers of the most valuable foreign objects of surveillance, said Kostin Raiu, head of the Global Research and Analysis Department of Kaspersky Lab.

More details at RBC:
[DLMURL="https://top.rbc.ru/politics/17/02/2015/54e257fe9a7947e06164f582"] https://top.rbc.ru/politics/17/02/2015/5 ... e06164f582 [/ DLMURL]

 

[Матушкин Андрей Николаевич]

Thank you, Konstantin Mikhailovich.

 

[Плотников Юрий Михайлович]

Thank!

 

[Kuznecov.Igorj]

Thanks, interesting!

 

[Детектив-Молдова]

Thank!
An interesting discovery!
Now the question arises, but in flash drives, what was hidden?
There is more memory and you can place "worms" of any suit