SoylentNews is people
SoylentNews
WikiLeaks is hosting 324 confirmed instances of malware among its caches of dumped emails, a top Bulgarian anti-malware veteran says. Random checks of reported malware hashes find the trojans are flagged as malware by Virus Total's static analysis checks.
Much of the malware appear to be attachments emailed by black hats in a bid to compromise the various parties affected in the WikiLeaks dumps.
Dr Vesselin Bontchev (@bontchev) says the instances of malware are only those confirmed and found in an initial search effort. [...] "The list is by no means exhaustive; I am just starting with the analysis," Bontchev says.
This discussion has been archived.
No new comments can be posted.
WikiLeaks is Hosting 324 Confirmed Instances of Malware Among its Caches of Dumped Emails
|
Log In/Create an Account
| Top
| 10 comments
| Search Discussion
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Small change can often be found under seat cushions.
-- One of Lazarus Long's most penetrating insights
(Score: 4, Interesting) by Anonymous Coward on Monday August 22 2016, @01:39PM
It is not unexpected. But forensic research may reveal useful information here.
Different espionage groups use different exploit tools. These are high-value targets, their email may contain zero-day exploits. There may even be exploits that can be tracked back to private espionage groups that are legally forbidden from selling their products to certain countries.
(Score: 0) by Anonymous Coward on Monday August 22 2016, @01:51PM
It would be interesting to see which of the attachments do not trigger detections but still contain malware.