US Disables Russian Malware Used For 20 Years To Spy In 50 Countries
The FSB had successfully inserted the "Snake" or "Uroburos" malware on computer systems around the world.
The US Justice Department said Tuesday that it had disabled a "sophisticated" malware network used by Russia's FSB intelligence agency for two decades to spy in 50 countries including a NATO ally.
The FSB had successfully inserted the "Snake" or "Uroburos" malware on computer systems around the world, focused on government networks, research facilities, journalists and other targets, according to US officials.
Computers in the system also served as relay nodes to disguise traffic to and from Snake malware inserted on target computer systems, they said.
In a years-long operation, the FBI was able to defeat Snake by inserting its own bit of computer code into it, which issued commands causing the malware to overwrite itself, the Justice Department said.
"Through a high-tech operation that turned Russian malware against itself, US law enforcement has neutralized one of Russia's most sophisticated cyber-espionage tools, used for two decades to advance Russia's authoritarian objectives," said Deputy Attorney General Lisa Monaco.
The malware has been known by computer security experts for at least a decade, and CISA, the US cyber defense agency, said the FSB began developing it in 2003.
CISA called Snake "the most sophisticated cyber espionage tool in the FSB's arsenal," noting that it was particularly stealthy, extremely hard to detect in computer systems and network traffic.
In addition, it was designed for easy updating and modification, and yet had "surprisingly few bugs given its complexity," CISA said.
Those aspects allowed the FSB to work undetected for years through sprawling host networks to get into computers with sensitive documents.
At least in one case Snake was placed on the systems of an unnamed NATO country, allowing Russian intelligence to access and exfiltrate sensitive international relations documents and diplomatic communications, CISA said.
"The effectiveness of this type of cyber espionage implant depends entirely on its long-term stealth," the agency said.
The FSB had successfully inserted the "Snake" or "Uroburos" malware on computer systems around the world, focused on government networks, research facilities, journalists and other targets, according to US officials.
Computers in the system also served as relay nodes to disguise traffic to and from Snake malware inserted on target computer systems, they said.
In a years-long operation, the FBI was able to defeat Snake by inserting its own bit of computer code into it, which issued commands causing the malware to overwrite itself, the Justice Department said.
"Through a high-tech operation that turned Russian malware against itself, US law enforcement has neutralized one of Russia's most sophisticated cyber-espionage tools, used for two decades to advance Russia's authoritarian objectives," said Deputy Attorney General Lisa Monaco.
The malware has been known by computer security experts for at least a decade, and CISA, the US cyber defense agency, said the FSB began developing it in 2003.
CISA called Snake "the most sophisticated cyber espionage tool in the FSB's arsenal," noting that it was particularly stealthy, extremely hard to detect in computer systems and network traffic.
In addition, it was designed for easy updating and modification, and yet had "surprisingly few bugs given its complexity," CISA said.
Those aspects allowed the FSB to work undetected for years through sprawling host networks to get into computers with sensitive documents.
At least in one case Snake was placed on the systems of an unnamed NATO country, allowing Russian intelligence to access and exfiltrate sensitive international relations documents and diplomatic communications, CISA said.
"The effectiveness of this type of cyber espionage implant depends entirely on its long-term stealth," the agency said.
AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
