U.S. Attorney for the EDNY, Breon Peace. Photo: Yuki Iwamura/AP.
The United States Justice Department revealed the effective conclusion of a court-authorized operation, called Operation MEDUSA, which declares to have actually effectively interfered with a worldwide peer-to-peer network of computer systems contaminated by the advanced Snake malware.
This malware, credited to a unit within Center 16 of the Federal Security Service of the Russian Federation (FSB), has actually been utilized for almost twenty years to take delicate files from numerous computer system systems in a minimum of 50 nations, consisting of NATO member federal governments, reporters, and other targets of interest to the Russian Federation.
“Russia used sophisticated malware to steal sensitive information from our allies, laundering it through a network of infected computers in the United States in a cynical attempt to conceal their crimes,” said Breon Peace, U.S. Attorney for the Eastern District of New York.
“Meeting the challenge of cyberespionage requires creativity and a willingness to use all lawful means to protect our nation and our allies. The court-authorized remote search and remediation announced today demonstrates my Office and our partners’ commitment to using all of the tools at our disposal to protect the American people.”
The FBI, operating in partnership with the U.S. Attorney’s Office for the EDNY and numerous foreign federal governments, reduced the effects of the FSB’s premier cyberespionage malware implant utilizing an FBI-created tool called PERSEUS. This tool efficiently disabled the Snake malware on jeopardized computer systems, triggering it to overwrite its own essential parts.
Attorney General Merrick Garland highlighted the collective effort of the Justice Department and worldwide partners in dismantling this international malware network.
The FBI and other U.S. firms, together with 6 other intelligence and cybersecurity firms from each of the Five Eyes member countries, have actually provided a joint cybersecurity advisory supplying comprehensive technical details about the Snake malware. This details will allow cybersecurity experts worldwide to find and remediate Snake malware infections on their networks.
While Operation MEDUSA effectively disabled the Snake malware on jeopardized computer systems, victims are motivated to take extra actions to safeguard themselves from additional damage. The Department of Justice highly advises network protectors examine the joint advisory for assistance on detection and patching.
The criminal examination into the FSB’s usage of the Snake malware is continuous, with the U.S. Attorney’s Office for the Eastern District of New York and the National Security Division’s Counterintelligence and Export Control Section leading the efforts.