This Spanish espionage campaign attacking South America


by Jimmy Nicholls| 20 August 2014

Hackers can take screenshots, listen through the microphone, and steal your files.

A cyber espionage campaign targeting Spanish speakers has been discovered in South America, according to security firm Kaspersky.

Machete allows hackers to snoop on governments, militaries, embassies and spies through collecting screenshots, key logs, audio, photos, files and location data, and also affects Europe and North America.

Kaspersky's global research and analysis team said: "The malware is distributed via social engineering techniques, which includes spear-phishing emails and infections via web by a fake blog website.

"We have found no evidence of exploits targeting zero-day vulnerabilities. Both the attackers and the victims appear to be Spanish-speaking."

Fake PowerPoint presentations that install malware when opened are also being used as part of the campaign, with the Python programming language also being used for the convenience of the hackers.

Though the code is intended mostly for Windows, the firm said there was evidence that infrastructure had been prepared for Mac, Unix and Android.

"The Machete discovery shows there are many regional players in the world of targeted attacks," Kaspersky said.

"Unfortunately, such attacks have become a part of the cyber arsenal of many nations located over the world."

Source: Company Press Release

Post a comment

Comments may be moderated for spam, obscenities or defamation.

Join our network

792 people like this.
2232 people follow this.

Security Intelligence

Privcy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.