Hackers hit with malware-ridden tools

Researchers uncover campaign targeting other hackers and the networks they've accessed

Security researchers have discovered a campaign where hackers themselves have become targets with malware-ridden tools offered online.

These tools enable an attacker to take full access of a victim's computer once unwittingly opened, according to Amit Serper from Cybereason

Serper has been investigating a campaign that's been running for years and found that hackers were taking existing tools and injecting them with remote-access trojan malware.

Related Resource

The essential guide to cloud-based backup and disaster recovery

Support business continuity by building a holistic emergency plan

Download now

Some of the tools were designed to harvest data through via product key generators. 

These were being repackaged and placed online, on forums and websites, to 'bait' other hackers in the hope that once in their systems, they would find backdoors into the networks they had hacked themselves. 

The tools have been infected with njRat, a new strain of trojan which gives the attacker full access to the victim's computer, their files, passwords and even their webcam and microphone. 

The njRat trojan is often spread through phishing emails and infected flash drives, but according to Serper, the malware has been embedded on to dormant or insecure websites. According to his research, these hackers have compromised several websites and are building new variations of the tools on a daily basis.

While hackers getting hacked may sound like a comeuppance, it's most likely fueling more criminal activity, according to Jake Moore, cyber security specialist at ESET. He suggests this could easily spread to a wider audience than just those intended. 

"Once campaigns like this are released into the wild, they inevitably end up being used by other threat actors, which increases the number of targets on a wider scale," he said. 

"Whilst the actors behind these campaigns may not be thinking about how moral such activities are, it highlights that even criminal hackers are susceptible to foul play and are vulnerable to impressive attacks."

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

FBI warns of ongoing corporate vishing attacks
phishing

FBI warns of ongoing corporate vishing attacks

19 Jan 2021
Hackers using COVID vaccine as a lure to spread malware
hacking

Hackers using COVID vaccine as a lure to spread malware

15 Jan 2021
Cyber criminals bypassing MFA to access cloud service accounts
two-factor authentication (2FA)

Cyber criminals bypassing MFA to access cloud service accounts

14 Jan 2021
Capcom data breach adds another 40,000 estimated victims
data breaches

Capcom data breach adds another 40,000 estimated victims

13 Jan 2021

Most Popular

IT retailer faces €10.4m GDPR fine for employee surveillance
General Data Protection Regulation (GDPR)

IT retailer faces €10.4m GDPR fine for employee surveillance

18 Jan 2021
Citrix buys Slack competitor Wrike in record $2.25bn deal
collaboration

Citrix buys Slack competitor Wrike in record $2.25bn deal

19 Jan 2021
Should IT departments call time on WhatsApp?
communications

Should IT departments call time on WhatsApp?

15 Jan 2021