![]() ![]() “It's more difficult to know who is attacking when they are using a garden-variety remote access tool,” Kindlund said.įireEye released a package of free tools called Calamine to help organisations detect when Poison Ivy attacks were potentially a part of a larger espionage campaign, a feat that could be difficult to peg because of wide use of the RAT. The malware was also used by hackers to breach security firm RSA that same year, stealing information related to its SecurID product line.Īccording to Kindlund, Poison Ivy – which has keylogging, screen- and video-capturing, and file-transferring capabilities – is an ordinary piece of malware, but one with significant benefits. Poison Ivy was released in 2005, and was notably used in the "Nitro" attacks in 2011 to steal intellectual property from numerous chemical companies. He said the freely available tool served purpose in a sophisticated malware marketplace.
0 Comments
Leave a Reply. |