The New Stuxnet Discovered Called Regin How Does It Work?

Regin Countries

Updated 11/25/2014

Symantec researchers discovered "the new Stuxnet", but it has been in operation since at least 2006. Obviously a highly advanced spying tool, better than the best malware out there. If you look at the times the code was put together it is clear that this is built in the UK with perhaps some help from the NSA.

Symantec published a 22-page report and blog post on the Regin malware, which it described as a powerful cyberespionage platform that can be customized depending on what type of data is sought.

If Regin does turn out to have been active and hidden for 8 years, the discovery means that nation states are still having a 100% success rate in avoiding all antivirus products, which is very bad news for companies trying to protect their networks and crown jewels.

Symantec has been quietly trying to analyze this critter for the last 12 months. It has five separate stages, each one depending on the previous stage to be decrypted. It also uses peer-to-peer communication, which avoids using a centralized command-and-control system to exfiltrate stolen data.

Get A Quote Now

Subscribe To Our Blog

Ransomware Hostage Rescue Manual

Get the latest about social engineering

Subscribe to CyberheistNews