The complexity and uniqueness of the malware requires new approaches to data protection.
Cybersecurity experts from SecurityScorecard have identified a new variation of a computer virus called Menorah that targets organizations in the Middle East. It was first discovered and analyzed by Trend Micro in October of this year.
The Menorah virus penetrates companies computer systems and takes root there. This malware allows attackers to gain full control over information from compromised devices on the network.
It is believed that the Iranian hacker group OilRig, also known as APT34, is responsible for the development and distribution of Menorah. Organizations in the Middle East are regularly targeted by this group.
One of the features of Menorah is that it creates a so-called "mutex" in the system of the infected computer, which guarantees that only one copy of the virus will run on the device. This increases the stealth of the malware in the system and slows down its detection.
In addition, Menorah collects the names of computers and users in the company's network, calculates special identifiers from them, and sends them to attackers.
Analysts note that the capabilities of the virus give hackers full access to confidential files, correspondence and personal data of employees of the attacked companies.
Experts recommend that managers and ordinary specialists of information security organizations in the region exercise increased vigilance and take additional measures to protect corporate systems from cyber attacks.
Cybersecurity experts from SecurityScorecard have identified a new variation of a computer virus called Menorah that targets organizations in the Middle East. It was first discovered and analyzed by Trend Micro in October of this year.
The Menorah virus penetrates companies computer systems and takes root there. This malware allows attackers to gain full control over information from compromised devices on the network.
It is believed that the Iranian hacker group OilRig, also known as APT34, is responsible for the development and distribution of Menorah. Organizations in the Middle East are regularly targeted by this group.
One of the features of Menorah is that it creates a so-called "mutex" in the system of the infected computer, which guarantees that only one copy of the virus will run on the device. This increases the stealth of the malware in the system and slows down its detection.
In addition, Menorah collects the names of computers and users in the company's network, calculates special identifiers from them, and sends them to attackers.
Analysts note that the capabilities of the virus give hackers full access to confidential files, correspondence and personal data of employees of the attacked companies.
Experts recommend that managers and ordinary specialists of information security organizations in the region exercise increased vigilance and take additional measures to protect corporate systems from cyber attacks.
