Highly Advanced Backdoor Trojan Cased High-Profile Targets For Years

An anonymous reader points out this story at Ars about a new trojan on the scene. Researchers have unearthed highly advanced malware they believe was developed by a wealthy nation-state to spy on a wide range of international targets in diverse industries, including hospitality, energy, airline, and research. Backdoor Regin, as researchers at security firm Symantec are referring to the trojan, bears some resemblance to previously discovered state-sponsored malware, including the espionage trojans known as Flame and Duqu, as well as Stuxnet, the computer worm and trojan that was programmed to disrupt Iran's nuclear program. Regin likely required months or years to be completed and contains dozens of individual modules that allowed its operators to tailor the malware to individual targets.

Microsoft Windows only

[innocent_white_lamb]

This apparently only runs on Windows.

I really don't understand why people run sensitive and critical stuff on Microsoft Windows. (I'm not trying to be a troll.) It's the world's biggest target for malware, it's a monoculture, and it has a security model that tends toward convenience over security, and was actually bolted on after-the-fact.

Unix (Linux) is about as far from a monoculture as you can get while still remaining reasonably compatible between distributions, and it was built with security in mind.

Re:Microsoft Windows only

targeted attacks like this are OS agnostic, if the organisations they wanted to hack were running Linux or OSX then these would have been designed for that target instead.

Re:Microsoft Windows only

[exomondo]

This apparently only runs on Windows.

A targeted attack is going to run on whatever the target uses.

Re:Nation uses malware to spy on ISP Customers...

[lostmongoose]

Among other things, they were infecting ISP machines to monitor specific customers.

Anyway, guesses on the responsible party? China, Israel, Russia?

...or USA, Britain, France, Germany...