Disttrack sabotage malware wipes data at unnamed Middle East energy organization
(Publication) Google search: [1]
| Disttrack sabotage malware wipes data at unnamed Middle East energy organization | |
|---|---|
| |
| Botnet | DistTrack |
| Malware | |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2012 / 2012-08-16 |
| Editor/Conference | Wired Business Media |
| Link | http://www.securityweek.com/disttrack-sabotage-malware-wipes-data-unnamed-middle-east-energy-organization (Archive copy) |
| Author | Fahmida Y. Rashid |
| Type | |
Abstract
“ Malware being used in a new series of targeted attacks has bucked the trend, choosing to destroy the computers it infects rather than just stealing sensitive information, security researchers said.
Called "Disttrack", the malware corrupts files, overwrites the infected machine's master boot record, and destroys the data so that it can't be recovered, according to reports from Symantec Security Response, Kaspersky Lab's Global Research and Analysis Team, and McAfee on Thursday. Disttrack has been observed in the Shamoon attacks, which has already affected at least one organization in the energy sector, Symantec said, but the company declined to provide any other details about the affected organization(s).
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2012BFR1099,
editor = {Wired Business Media},
author = {Fahmida Y. Rashid},
title = {Disttrack sabotage malware wipes data at unnamed Middle East energy organization},
date = {16},
month = Aug,
year = {2012},
howpublished = {\url{http://www.securityweek.com/disttrack-sabotage-malware-wipes-data-unnamed-middle-east-energy-organization}},
}