New malicious code steals engineering data

Eset antivirus company said the discovery of a new type of malicious software-oriented industrial espionage among designers and engineers. A new sample of stealing malware files created by popular engineering program AutoCAD.

Eset antivirus analyst Pierre-Marc Buro said that the company managed to capture samples of this malware, and based on an analysis of the data it can be argued that the code is implemented in the programming language LISP to steal sensitive information, the workers of engineering projects and technical information about the projections of the AutoCAD environment on a computer engineer or engineering group. Brown says that for the first time, samples have been found in Peru, but sends stolen Trojan engineering in China, where, apparently, and are recipients of other people's work results.

In Eset told that the first code to LISP for Engineering theft were discovered in February of this year, but failed to intercept the code is only recently, and only recently managed to carry out its analysis. Buro said that Eset has contacted the Chinese Internet company Tencent, a network which was found a server that retrieves data from the code with a request to disconnect this machine, and gave technical details about the code in the company Autodesk, a software AutoCAD.

Brown says, that in itself AutoCAD-malware is not dangerous because it can not independently get to the victim's computer. To do this he must use a different code, or the organizer of the attack must be under one pretext or another to force the engineer to run a file containing a malicious. In addition, Eset claims that AutoCAD-Trojan is a code for industrial espionage, and therefore it should be applied, in theory, my targeted for high-attacks when the attacker knows exactly who he is attacking and which wants to steal data.