State-Sponsored Malware

Malware, short for “malicious software,” is software that is used to disrupt computer operation, gather sensitive information, or gain access to private computer systems. The vast majority of malware is criminal, aimed at obtaining banking information or login credentials for email or social media accounts. But malware is also used by state actors. State intelligence agencies use malware to carry out covert actions against other states’ computer systems, such as Flame and Stuxnet. States and state-supporting actors also use malware to spy on activists, journalists, and dissidents.

Since March 2012, EFF has been collecting and analyzing malware deployed by pro-Syrian-government hackers that targets supporters of the Syrian opposition, covertly installs surveillance tools on their computers, and collects keystrokes, passwords, and screenshots. Our analysis has identified two distinct groups that have carried out prolonged phishing and malware campaigns using cheap or free Remote Access Tools, such as Black Shades Remote Controller and Dark Comet RAT. To date, EFF has reported on more than a dozen distinct attacks, which we have translated into Arabic in order to alert the Syrian community.

Stay in Touch

NSA Spying

EFF is leading the fight against the NSA's illegal mass surveillance program. Learn more about what the program is, how it works, and what you can do.

Follow EFF

Come to EFF HQ on July 8 for a book talk with author of "Geek Heresy: Rescuing Social Change from the Cult of Tech" https://eff.org/r.i3fv

Jul 2 @ 4:57pm

EFF is turning 25! Here's the who, what, when, where, how, and—maybe most importantly—why of our celebration: https://eff.org/r.6dov

Jul 2 @ 4:51pm

After 28 years, the US is getting a new Librarian. @jessamyn lays out what to look for in the #nextloc: http://librarianofprogress.com/

Jul 2 @ 3:30pm
JavaScript license information