Wanted crypto? What a pity

A watering-hole attack trap over the summer affected thousands of users in search of encryption.

Users in Italy and Belgium were hardest hit by the infected installer ploy, but people in Turkey, North Africa and the Middle East were also affected.

Kaspersky Lab security researchers report that an APT hacking crew it calls StrongPity and that it targets users for WinRAR document encryption and TrueCrypt system encryption utilities.

The StrongPity malware includes components that give the attackers complete control of the victim’s system, enables them to steal disk content and also to download additional modules to gather up communications and contacts. Kaspersky Lab has so far detected visits to StrongPity sites and the presence of StrongPity components across more than a thousand target systems. ®

Biting the hand that feeds IT © 1998–2018