According to security expert Pedro Vilaca, the malware suggests that Hacking Team might have resurfaced.
A security researcher has identified new Mac malware that he says points to Hacking Team, a controversial Italian firm that sells surveillance tools to government and law enforcement agencies, legitimate and repressive alike.
According to SentinelOne OS X security expert Pedro Vilaca, the malware suggests that Hacking Team might have resurfaced after it was hacked in July.
That resulted in 400GB of internal documents, including details about Hacking Team’s clients, source code, and email communications being posted online.
Vilaca pointed to a Trojan known as Morcut, which was uploaded to Google’s VirusTotal scanning service last month and had stayed under the radar.
It pointed to Hacking Team’s Remote Control System (RCS), however.
“Hacking Team appears to have resumed their operations but they are still using their old source code for this,” Vilaca wrote in a blog post.
It remains unclear, however, whether they are using old and new source code, the latter which was promised at the time of the July hack. “Or were they just lying about it and resumed operations with the old code since they are probably on a shortage of engineering ‘talent?'” Vilaca wrote.
Days after the summertime breach, Microsoft released an emergency patch for a security hole, which could allow an attacker to take full control of a remote system if the user opened a particular document or visited a booby-trapped website.
Adobe also pushed out a fix for a bug in Flash Player uncovered in the leak.
Based on internal documents, Hacking Team sold surveillance tools to government and law enforcement agencies in Australia, Azerbaijan, Bahrain, Chile, Colombia, Cyprus, Czech Republic, Ecuador, Egypt, Ethiopia, Germany, Honduras, Hungary, Italy, Kazakhstan, Luxembourg, Malaysia, Mexico, Mongolia, Morocco, Nigeria, Oman, Panama, Poland, Russia, Saudi Arabia, Singapore, South Korea, Spain, Sudan, Switzerland, Thailand, the United Arab Emirates, the US, Uzbekistan, and Vietnam.