• Français
  • English

[PCWorld] CosmicDuke: a super malware formed by two already potent threats


F-Secure researchers discovered a particulary insidious malware that meshed two already potent malwares: MiniDuke and Cosmu. MiniDuke was a 2013 APT Trojan directed towards European governments (and now criminals and contractors), while Cosmu is a malware known to steal sensitive data. CosmicDuke uses a phishing attack style and once the targeted computer is affected, it uses a keylogger to gather sensitive information. By combining the two malwares mentioned above, CosmicDuke seems to blur the lines between state sponsored espionage and everyday crimeware. CosmicDuke has targeted different institutions across the UK, US, Russia, Georgia, Kazakhstan, India, Belarus, Cyprus, Ukraine and Lithuania.

Source: PCWorld