Regin – In Reg
Security researchers are talking about a newly discovered malware with a possibility of being created years ago and with sophisticated capabilities of spying on its victims. According to Symantec, the vicitms are spread across many countries, with most infections coming from Russia and Saudi Arabia. Most researchers agree that the level of sophistication that has gone into developing this malware indicates that a nation state or states are behind it and the most likely suspects are the western intelligence agencies.
Encryption is used throughout the entire process starting from infecting the victim all the way to extracting sensitive information making the detection of this malware so far almost impossible.
Below are detailed analysis of this malware posted by Symantec and Kaspersky Lab.