SONY have been the victim of a very terrifying attack by a group known as GOP (Guardians of Peace) , the origin of which has been attributed to North Korea, as initially they asked for the release of a new movie “The Interview” to be canned, as the North saw it as a terrorist threat towards them.
It hasn’t stopped there though, with the secret alias of celebrities leaked and social security numbers of over 47,000 staff, contractors and celebrities too. Then there have been the release of entire movie scripts and films and to top it off today Kaspersky have reported that they have seen a new variant of the ‘Destover Malware’ which has been signed with certificates which used to belong to SONY .
The details of how this new variant works are as follows:
- Signed December 5th
- Identical to previous release of the malware
- Attempts to connect to two separate C2 severs
- Redesigned to open backdoors and operate in a new botnet toolkit
- The signed signature allows malware to be installed without being detected as malicious