Regin nation state malware research revealed by security companies

Larry Seltzer

Updated November 24, 2014 at 12:48 PM

Following on the news from Symantec of Regin, a sophisticated and likely state-developed malware for powerful surveillance, Kaspersky has issued their own report. F-Secure has also revealed some of their findings.

The Kaspersky report entitled "The Regin Platform - Nation-State Ownership of GSM Networks" emphasizes a capability of Regin that Symantec also mentioned: It spies on GSM cellular networks. Inside one sample they found what "...appears to be an activity log on a GSM Base Station Controller." Kaspersky describes the information collected, including the usernames and passwords of some engineering accounts.

Must See Gallery

Six Clicks: The six fastest computers in the world

Kaspersky also describes some of the C&C (Command and Control) activity of Regin. Like everything else about it, the C&C is sophisticated and stealthy, but they identify four C&C server IP addresses; two in India, one in Taiwan and one in Belgium. The report also calls out the infections they found one specific Middle Eastern country. In this country:

...all the victims we identified communicate with each other, forming a peer-to-peer network. The P2P network includes the president's office, a research center, an educational institution network and a bank.

F-Secure has added some information about Regin in their blog. Additionally, F-Secure's Mikko Hypponen says that they believe that Regin is the malware used to attack famed cryptographer Jean-Jacques Quisquater. At the time the source of the attack was rumored to be the NSA/GSCQ, but no real evidence was presented.

F-Secure doesn't know who wrote Regin, but says that they believe it is not coming from Russia or China. Kaspersky doesn't add much to the discussion of who is responsible, but they do add the graph below to show the development timestamps of the executables. These look roughly like the eastern US work day, but the information could be faked.

Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever
Caitlin Clark’s WNBA preseason debut went much like her senior year at Iowa. She hit a bunch of 3s and did so in front of a sold-out crowd.
Yahoo Sports
No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it
The quality was choppy, but it was better than what the WNBA had.
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
Yahoo Sports
NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?
Which teams did the best in the NFL Draft?
Yahoo Sports
Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset
The 150th Kentucky Derby produced yet another magnificent two-minute spectacle.
Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
Yahoo Sports
New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal
It turns out the money was going from Ohtani's bank account to an illegal bookie to ... casinos.
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
Yahoo Sports
The best RBs for 2024 fantasy football according to our analysts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Finance
CVS stock plunges after earnings numbers one analyst 'did not even believe'
CVS warns it could cede Medicare Advantage market share as reimbursement rates pressure the company.
Yahoo Sports
Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets
Despite a trip to the Western Conference finals in his first season with the team, the Lakers are now ready to look for a replacement for Darvin Ham.
Yahoo Sports
MLB odds: Elly De La Cruz on pace for historic season, and his MVP odds are dropping
Elly De La Cruz was a thrill ride in April.
Yahoo Sports
Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46
The Seminoles lost 23-16 to Tennessee in the first-ever BCS title game.
Yahoo News
2nd Boeing whistleblower found dead. Here's a timeline of the company's mounting problems.
This is the second Boeing whistleblower to die in the last two months.
Yahoo Sports
UFC 301: Alexandre Pantoja survives bloody wounds and bad advice to retain flyweight belt vs. Steve Erceg
A challenger with less than a year of UFC experience gave Pantoja plenty of problems. And wounds.
Yahoo Sports
UFC 301: Anthony Smith confronts career reality after reconciling with the man who knocked out his teeth
After 56 pro fights and losses in three of his last four, the UFC veteran knows what fans think about the state of his career – but he also knows they've been wrong before.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.
Yahoo Sports
The expanded 12-team College Football Playoff is here — and it already has problems
There is cause for excitement around the new playoff format. There's also lots of complaints and criticism to go around.
Yahoo Sports
How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more
The WNBA preseason tips off this Friday. Here's how you can catch Caitlin Clark's first game.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Regin nation state malware research revealed by security companies

Must See Gallery

Recommended Stories

Former NBA guard Darius Morris dies at 33

Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever

No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?

Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal

NFL Draft grades for all 32 teams | Zero Blitz

The best RBs for 2024 fantasy football according to our analysts

CVS stock plunges after earnings numbers one analyst 'did not even believe'

Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets

MLB odds: Elly De La Cruz on pace for historic season, and his MVP odds are dropping

Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46

2nd Boeing whistleblower found dead. Here's a timeline of the company's mounting problems.

UFC 301: Alexandre Pantoja survives bloody wounds and bad advice to retain flyweight belt vs. Steve Erceg

UFC 301: Anthony Smith confronts career reality after reconciling with the man who knocked out his teeth

The best budgeting apps for 2024

The expanded 12-team College Football Playoff is here — and it already has problems

How to watch the 2024 WNBA preseason: Caitlin Clark’s next Indiana Fever game time, channel and more