NetTraveler is command and control software that is secretly installed on networks to steal data.
Kaspersky Labs reported on the discovery of this threat back in June of this year.
Kaspersky Labs has discovered that NetTraveler is back — this time using spearphishing emails to target Uyghur activists. Kaspersky provided this screen shot of an attack email:
The translation of this message is “The spokesman of the WUC made the following statement about the massacre in Karghiliq country. To the kind attention of everyone.” A message about a local massacre is a strong call to action for Uygher activists. When the link is followed, a chain of events is triggered that ultimately compromise the targeted systems.
Spearphishing is successful because it targets the people who use the systems, not the systems themselves. At Iconix, our goal is to make this threat vector less effective. Spearphishers deceive employees into making bad email decisions that compromise security. IT needs to help employees make better email processing decisions. That is where SP Guard comes into play. Using SP Guard, IT can determine a list of trusted senders and provide this information to staff in a simple and highly effective manner.
You can contact us at 408-727-6342,ext 3 or use our online form.