Kaspersky Lab has released vital information about what’s being called one of the most advanced cyber espionage threat, The Mask. Also known as Careto, this threat actor can attack the system and gather all the information from it. Reported to be Spanish-speaking, the attackers have targeted government organizations, energy, oil and gas companies, and diplomatic offices.
And before you think that the OS you are running is safe, Kaspersky’s report makes it clear that given the high-level toolset used by Careto, it has the ability to almost all operating systems including Windows, Mac OS X, iOS and Android. A total of 380 unique victims have been reported till now, while Careto is estimated to having been active since the year 2007.
So, how does it function? A link to a malicious website is sent to various users. If the victim visits the website and visits certain sub- domains there, it infects the system, before redirecting the victim to what could be safe website, which was mentioned in the e-mail. Also, detection isn’t very easy, and apart from stealing the data, the complex architecture of The Mask enables it to cause a further damage.
Kaspersky claims that its products detect and remove all known version of this malware. While nothing can do what an anti-virus does, being a little more careful and not jumping to click on every link that you get in your inbox should help too.