New Delhi: Nov 30: Cyber criminals are using a new malware —Regin — to penetrate and monitor GSM networks in India and other countries including Pakistan, Brazil, Germany and Russia, security researchers have said.
Regin is being used to target telecom operators, governments, financial institutions, research organisations, multinational political bodies and individuals involved in advanced mathematical/cryptographical research.
Security solutions firm Kaspersky Lab said some of the earliest samples of Regin appear to have been created as early as 2003. “Regin is aimed at gathering confidential data from attacked networks and performing several other types of attacks. Attackers turned compromised organisations in one vast unified victim and were able to send commands and steal the information via a single entry point,” Kaspersky said.
This structure allowed the actor to operate silently for years without raising suspicions, it added. “The ability to penetrate and monitor GSM networks is perhaps the most unusual and interesting aspect of these operations,” Kaspersky Lab director of global research and analysis Team Costin Raiu said.
Post attack, attackers could have access to information about which calls are processed by a particular cell site, redirect calls to other cells, activate neighbour cells and perform other offensive activities.
