StripedFly APT Malware Infects Over A Million Users

StripedFly, a highly sophisticated cross-platform malware, went unnoticed by cybersecurity experts for five years, infecting over a million Windows and Linux systems. Kaspersky uncovered its true nature in 2022, revealing its activities dating back to 2017 when it was mistakenly classified as a Monero cryptocurrency miner. StripedFly is remarkable, boasting TOR-based traffic concealment, automated updates, worm-like spreading, and a custom EternalBlue SMBv1 exploit predating its public disclosure. While its purpose remains unclear, its complexity suggests it's an APT malware. The earliest version with the EternalBlue exploit dates back to April 2016, just before the Shadow Brokers' leak in August 2016. Read more...