Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.

Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.


Stealthy spy software snooping for years: Symantec

26 November 2014, 08:46

San Francisco -Computer security firm Symantec on Monday said it uncovered stealthy software wielded as part of a years-long spying campaign, most likely by a nation state.

The malicious software, dubbed Regin, has a rare level of sophistication and has been targeting government agencies, telecoms, utilities, airlines, research facilities, private individuals and others since at least 2008, according to Symantec Corporation.

Attacks on telecom firms appeared aimed at getting access to calls being routed through networks.

"Regin is a highly complex threat which has been used in systematic data collection or intelligence gathering campaigns," the Silicon Valley-based computer security firm said in a paper detailing the threat.

"The development and operation of this malware would have required a significant investment of time and resources, indicating that a nation state is responsible."

Regin was found mainly in 10 countries, but more than half of infections discovered were in Russia and Saudi Arabia, according to Symantec researchers.

Regin's capabilities include letting hackers snap screen-shots, steal passwords, monitor network traffic, take files or tap into mobile telephone calls, researchers said.

The "backdoor-type Trojan" takes great measures to hide its presence as well as any data it is stealing, according to Symantec.

"Regin's developers put considerable effort into making it highly inconspicuous," the report said.

"Its low key nature means it can potentially be used in espionage campaigns lasting several years."

Regin may have taken years to make, according to Symantec, which said the tool could be used for mass surveillance.

Nearly half the infections discovered targeted small businesses and private individuals.

Researchers found Regin infected a variety of organizations from 2008 to 2011, only to be withdrawn, though a new version of the malicious software appeared last year.

Symantec did not indicate who it thought might be behind the cyber-espionage tool.

For the latest on national news, politics, sport, entertainment and more follow us on Twitter and like our Facebook page!


Tags symantec

Read News24’s Comments Policy

Comment on this story
Comments have been closed for this article.

Read more from our Users

Submitted by
Wilon Ochieng
Labour Party to dump both Jubilee...

The Labour Party of Kenya is likely to avoid supportoing both the CORD and Jubilee factions during the 2017 General Elections. Read more...

Submitted by
William Korir
Ukambani MP quits Jubilee, to run...

An Ukambani MP has quit the Jubilee Party, citing voter apathy as his reason behind leaving the ruling coalition. Read more...

Submitted by
Victor Tinto
Government launches probe into Po...

The government has launched an inquiry into the circumstances that could have led to two National Police Service helicopter accidents in August and September this year. Read more...

Submitted by
Wilwon Ochieng
Deputy Governor's ally found with...

The EACC has recovered KES 2 million in fake currency from a close ally of Deputy Governor for Tharaka Nithi Eliud Mati. Read more...

Submitted by
William Korir
Mudavadi given permission to join...

Musalia Mudavadi has been ghranted permission by his party to join the CORD Coalition. Read more...

Submitted by
Victor Tinto
EACC officers raid Deputy Governo...

EACC officers raided the home of a Deputy Governor as theft case continues in court. Read more...