Every month, antivirus vendors receive samples of ongoing threats. For two years, Kasperksy has isolated very sophisticated malware, and he has just identified it as cyber-espionage software used by US intelligence.
To spy and counter-spy, intelligence agencies in any country use the same tools as hackers: malware. Everything is a secret, but Kaspersky thinks he has got his hands onused by the CIA. Obviously, taking care not to name it.
In his, the only famous antivirus editor explains that it has studied malware samples sent in February 2019 to security experts. This is what is usually done, and the largest antiviruses are responsible for analyzing them to strengthen the protection of their solutions, but also to take stock of current threats.
A variant of a Trojan horse used since 2014
Some of the samples cannot be associated with any known activity. Kaspersky explains that it then isolated the most sophisticated malware, and experts found similarities in the coding,and the techniques used in the so-called Lambert malware family. Four years ago, under the name of , had revealed to the general public the tools of the CIA and, at Kaspersky, we had decided to classify them under the name of Lambert, with a code for each variant.
Today, it is therefore Purple Lambert, and this Trojan makes it possible to monitor network activity on theinfected. It is passive malware, which acts in the background, and according to Kaspersky its code dates back to 2014. It is an extremely rare find and, of course, the publisher does not name the CIA … But as it stores its discovery in the ” “, Obviously, these are the hacking toolkits used by US intelligence in the past against the” Islamic State “, or the Chinese civil aviation sector.