24,000 computers worldwide infected by Middle Eastern malware

Share this article:

Experts have discovered a remote access tool (RAT) that has infected 24,000 computers worldwide, and has been used by up to 487 criminal groups.

Dubbed njRAT, the malware shares similar functions as other RATs, but its most unique attribute stems from its regional usage, according to a blog post by researchers at Symantec.

Developed by Arabic speakers, the RAT – which can download additional malware, log keystrokes, compromise webcams, and can control botnets – is primarily used by attackers in the Middle East and spreads via “infected USB keys or networked drives.” Close to 80 percent of the command and control servers tied to the malware are located in Middle East regions.

While a majority of the usage is geared toward typical cyber criminal motives, experts at Symantec have observed the malware infecting the networks of governments and political activists.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Tinba variant aimed at U.S., international banks

Tinba variant aimed at U.S., international banks

Researchers at AVAST have unlocked a Tinba variant and discovered it has been customized to target U.S. financial institutions.

Adobe makes delayed updates for Reader, Acrobat available

The Reader and Acrobat fixes were delayed a week due to issues found during testing.

Nigerian police search for ringleader in major bank heist

The suspect, Godswill Oyegwa Uyoyou, conspired with others to hack bank systems and divert 6.28 billion Naira to mule accounts.