24,000 computers worldwide infected by Middle Eastern malware

Share this article:

Experts have discovered a remote access tool (RAT) that has infected 24,000 computers worldwide, and has been used by up to 487 criminal groups.

Dubbed njRAT, the malware shares similar functions as other RATs, but its most unique attribute stems from its regional usage, according to a blog post by researchers at Symantec.

Developed by Arabic speakers, the RAT – which can download additional malware, log keystrokes, compromise webcams, and can control botnets – is primarily used by attackers in the Middle East and spreads via “infected USB keys or networked drives.” Close to 80 percent of the command and control servers tied to the malware are located in Middle East regions.

While a majority of the usage is geared toward typical cyber criminal motives, experts at Symantec have observed the malware infecting the networks of governments and political activists.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

ISSA tackles workforce gap with career lifecycle program

ISSA tackles workforce gap with career lifecycle program ...

On Thursday, the group launched its Cybersecurity Career Lifecycle (CSCL) program.

Amplification DDoS attacks most popular, according to Symantec

Amplification DDoS attacks most popular, according to Symantec

The company noted in a whitepaper released on Tuesday that Domain Name Server amplification attacks have increased 183 percent between January and August.

Court shutters NY co. selling security software with "no value"

A federal court shut down Pairsys at the request of the Federal Trade Commission.