Kaspersky reveals ‘elegant’ malware resembling NSA code

The Russian cybersecurity firm discovered sophisticated malware that combined cryptocurrency mining and espionage capabilities.

12 comments

It's most likely resembling NSA code because it's using EternalBlue which was leaked back in 2017 by ShadowBrokers. The title of the article is misleading/click-baity. (No offense to the OP, I know you just used the title from the article.)
- 👍
Could have sworn Kaspersky was trying their hardest to not be Russian.
Not really trusting the source here.
- https://www.pcmag.com/news/powerful-malware-disguised-as-crypto-miner-infects-1m-plus-windows-linux
  
  Thank you, but I meant I don’t trust Kapersky themselves.
- Here’s the original report: https://securelist.com/stripedfly-perennially-flying-under-the-radar/110903/
  
  It doesn’t specifically attribute this to the NSA, and it’s very hard to definitively say who created what malware anyways.
  
  That being said, if you read through the report, the details on this really scream “state actor” most probably. The level of modularity, the infrastructure of the C2 server, and the detailed & flexible spying capabilities all point to some government agency more than anything else.

You've viewed 12 comments.