Regin Malware: Find Out Where Experts Say A ‘Groundbreaking’ Infection Poses The Biggest Threat

The internet age is no stranger to computer infections, but every now and then, an infection comes along that happens to be more profound than its predecessors. When the experts are considering an infection “groundbreaking,” and seem to have no idea where it came from, that would appear to be a starting point or check off the list for a major computer infection.

According to 10 News, the “Regin” malware is that profound infection. This newly discovered cyber threat is not your typical “credit-card stealing operation”, but a “government spy tool”.

“Its capabilities and the level of resources behind Regin indicate that it is one of the main cyberespionage tools used by a nation state. Development took months, if not years, to complete.”

It is called “Regin”, pronounced “Region”, for a reason. Symantec, the maker of Norton AntiVirus and the researcher who wrote up the report on the infection, has named it “Regin” because it seems to have certain regions in mind. Though, it has been floating around for six years, Regin’s region is far more curious.

It has been found in 10 countries, including Russia, with the former Soviet Union and Saudi Arabia seemingly its prime targets. According to Symantec’s report, the infection known as “Regin” had an initial run from 2008 to 2011, and then resurfaced with a new edition from 2013 on.

The Regin infection was apparently found on various company’s computers in the 10 countries it covered, including telecommunications and critical infrastructure related business. Once the infection was installed, it searched airline computers to find out where its intended target was traveling, searched hotel computers to find out room numbers, and tapped telecommunication computers to know who the intended target was speaking to.

CNET reports that, despite its complex nature and inability to be well-studied by security companies, it is unlikely it will filter down to consumer computers. Symantec seemed quite certain and was quite direct about this fact, simply saying we will not “see copycats targeting consumers”.

However, businesses in the potentially infected countries should heed the warning from Symantec, CNET reports.

“Those companies and government agencies should make sure they encrypt their data and communications so only authorized people can read them.”

They also suggested that the employees of said companies should be mindful of their emails, and to not “just open up every free coupon that shows up in your email.” The Inquisitr recently reported about one such email that was circulating and claiming to be from Pizza Hut. It is safe to say that Symantec is warning these companies from avoiding that “free” pizza.

So, what are your thoughts? Where do you think this Regin infection came from?

[Images Via Creative Commons And EFF Graphics]