June 10, 2013 Leave a comment
Malware known as NetTraveler has infiltrated more than 350 companies in 40 countries over the past eight years, according to researchers at Kaspersky Lab. The victims of the malware include organizations in the energy industry, military contractors, scientific research facilities and universities.
The malware harvests data, logs keystrokes, and gathers file system listings and Office and PDF documents. The malware gains a foothold in targeted organizations through spear phishing campaigns and exploits a pair of known vulnerabilities in Microsoft Word. Fixes for the flaws were released in 2010 and 2012.