'Nitro' Hackers Use Stock Malware to Steal Chemical, Defense Secrets

Researchers trace some of the attacks back to an individual in China.

Computerworld: Researchers from security vendor Symantec have published a new report about a cyberattack that used "off-the-shelf" malware to obtain corporate secrets from 48 companies. The "Nitro" campaign relied on the Poison Ivy remote-access Trojan (RAT), which was created by a Chinese hacker and can be easily downloaded from the Internet, to target a variety of firms, many in the chemical and defense industries. In order to get the malware into the corporate networks, the attackers sent highly targeted e-mail messages to just a few people at each company.

One of the command-and-control servers used for the attack is owned by an individual in China. It's not clear if he was the sole perpetrator or if other hackers or the Chinese government were also involved in the attacks.

Tags: cyberattack

0 Comments (click to add your comment)
Comment and Contribute


(Maximum characters: 1200). You have characters left.



IT Management Daily
Don't miss an article. Subscribe to our newsletter below.

By submitting your information, you agree that datamation.com may send you Datamation offers via email, phone and text message, as well as email offers about other products and services that Datamation believes may be of interest to you. Datamation will process your information in accordance with the Quinstreet Privacy Policy.