Kaspersky Lab has revealed a long-standing operation of cyber espionage conducted by the hacker group called "Ekvejžn".
(Translated from Russian - language may be somewhat off)
The company Kaspersky Lab has revealed a long-standing operation of cyber espionage conducted by the hacker group called "Ekvejžn".
The company said that it was the most advanced group with whom they'd ever met, and that the methods used are revolutionary in the field of technology. It is suspected in connection with the hacker group American agency NSA.
In the last 15 years, the hacker group - by the research team of the company Kaspersky called "Ekvejžn" (Equation) - infecting the computers in more than 30 countries. It is believed that the group has exceptional skills and unlimited resources.
"Ekvejžn" group is probably active since the late 90s, but has reached a climax in 2008 when he developed an incredibly powerful technological weapons.
The past 20 years have used several versions of malware to infect computers governments, telecommunications companies, the military, the institutions dealing with nuclear research, energy companies. A sophisticated system of espionage was used on thousands of computers belonging to officials, scientists, businessmen and journalists.
Kaspersky followed the operation of these groups in more than 30 countries, including Iran, Russia, Syria, Afghanistan, Hong Kong, Mexico, the US, France, Switzerland, United Kingdom and India.
The company is not directly appointed by a State or an agency that stands behind this operation but stressed the connection with the system "Staksnet" leading cyber weapon of the US NSA (National Security Agency) that was used in an attack on Iran's nuclear program. In addition, the fact that the largest number of infections detected in countries that are not in good relations with the United States (Russia, Iran, Syria) clearly indicates when the suspect.
Source Reuters, who once worked at the NSA, confirmed the discovery and analysis of Kaspersky Lab, as well as the agency responsible for the operation.
"The hacker group has found a way to hide spyware deep within the hard disk. Their malware can reprogram "firmware" hard drives of all known manufacturers (IBM, Samsung, Toshiba, Western Didžital) and separates himself for special hidden sectors. When this malware infected disk it is practically impossible to delete "explains Kosti Raju research team from Kaspersky Lab.
"The ability to reprogram the" firmware "hard disk drive all the leading manufacturers is something unbelievable. I honestly do not believe that in the world there is a hacker group that has the ability to "Ekvejžn" adds Raju and concludes that one possible explanation for this is that the group worked together with producers.
NSA is more likely to get hold of unique codes necessary to activate viruses. One of them is that they are based on a contract between the Pentagon and the company required the codes for "security audit".
Peter Svajr, a member of Obama's groups for intelligence and communication technology, says that this can have consequences on the economic and diplomatic relations with the United States and other countries.
"Who is the real criminal?", Asks Kristin Hrafnson, a spokesman for WikiLeaks. We are told that the biggest cyber threat comes from China and North Korea, and in fact the real danger here in the United States. They its technology can cause havoc around the world.
She adds that probably stands behind everything NSA. "No other agency that has this capability and resources," adds Kristin.
Cryptologist and expert in IT security Bruce Schneider also believes that these techniques belong to the NSA, or possibly their partner British GCHQ.