24,000 computers worldwide infected by Middle Eastern malware

Share this article:

Experts have discovered a remote access tool (RAT) that has infected 24,000 computers worldwide, and has been used by up to 487 criminal groups.

Dubbed njRAT, the malware shares similar functions as other RATs, but its most unique attribute stems from its regional usage, according to a blog post by researchers at Symantec.

Developed by Arabic speakers, the RAT – which can download additional malware, log keystrokes, compromise webcams, and can control botnets – is primarily used by attackers in the Middle East and spreads via “infected USB keys or networked drives.” Close to 80 percent of the command and control servers tied to the malware are located in Middle East regions.

While a majority of the usage is geared toward typical cyber criminal motives, experts at Symantec have observed the malware infecting the networks of governments and political activists.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Report: most orgs lacking in response team, policies to address cyber incidents

In its Q3 threat intelligence report, Solutionary learned that 75 percent of organizations it assisted had no response team or policies and procedures to address cyber incidents.

Flash redirect campaign impacts Carnegie Mellon page, leads to Angler EK

Flash redirect campaign impacts Carnegie Mellon page, leads ...

Malwarebytes found that, since early July, thousands of sites had been targeted in the campaign.

EU conducts massive cyberattack simulation on critical networks

Conducted by the European Union Agency for Network and Information Security, the simulation launched 2,000 attacks on the networks of various critical infrastructure organizations.