[lacnog] Slingshot APT: Malware spread via routers

Robert MARTIN-LEGENE robert en pch.net
Mar Mar 13 11:09:40 BRT 2018


Esto debe afectuar a LAC tambien, ya que muchos usan MikroTik.

This should affect the LAC region too, since so many use MikroTik.


-------- Forwarded Message --------
Subject: 	[afnog] Slingshot APT: Malware spread via routers
Date: 	Tue, 13 Mar 2018 13:48:51 +0400
From: 	Daniel Shaw <daniel en afrinic.net>
To: 	afnog <afnog en afnog.org>



For anyone that uses MikroTik, now is a good time to make sure your firmware is updated and scan any network admins' windows workstations.

https://www.kaspersky.com/blog/web-sas-2018-apt-announcement-2/21514/

https://arstechnica.com/information-technology/2018/03/potent-malware-that-hid-for-six-years-spread-through-routers/

https://www.engadget.com/2018/03/11/sophisticated-malware-attacks-through-routers/?sr_source=Facebook

https://securelist.com/apt-slingshot/84312/

It doesn't seem to be that widely detected so far, but what makes this one interesting is how long it's remained undetected. And what is perhaps of interest to this list is that is seems to target mostly Africa (and the Middle East).

Regards,
Daniel




_______________________________________________
afnog mailing list
https://www.afnog.org/mailman/listinfo/afnog

------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <https://mail.lacnic.net/pipermail/lacnog/attachments/20180313/3e07ca76/attachment.html>


Más información sobre la lista de distribución LACNOG