A trojan that uses an authentication code to communicate with its command-and-control (C&C) server has tainted thousands of organizations around the globe, primarily companies in the U.K. Seculert, an advanced threat detection firm, posted the findings Wednesday about malware called “Magic” on its blog. The company discovered that the backdoor – capable of setting up a backdoor to download additional malware, steal data and inject HTML into users’ browsers – had remained undetected on victims’ machines for the past 11 months. But so far, some of the malicious capabilities of Magic haven’t been used – such as installing more advanced malware – leading researchers to believe that attackers merely are in a reconnaissance phase, but potentially setting the stage for a “much broader attack,” the blog post said.
Menu