Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Updated NetTraveler backdoor has encrypted configuration file

Updated NetTraveler backdoor has encrypted configuration file

2014/08/27

Softpedia - (International) Researchers at Kaspersky Labs identified an updated variant of the NetTraveler (also known as Travnet or Netfile) malware being used in a spearphishing campaign that contains an encrypted configuration file. The NetTraveler malware has been used for as long as 10 years and is frequently used in attacks targeting diplomatic, government, military, and activist groups.

Source: http://news.softpedia.com/news/Updated-NetTraveler-Backdoor-Has-Encrypted-Configuration-File-456602.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:21:30