State-Sponsored Malware

Malware, short for “malicious software,” is software that is used to disrupt computer operation, gather sensitive information, or gain access to private computer systems. The vast majority of malware is criminal, aimed at obtaining banking information or login credentials for email or social media accounts. But malware is also used by state actors. State intelligence agencies use malware to carry out covert actions against other states’ computer systems, such as Flame and Stuxnet. States and state-supporting actors also use malware to spy on activists, journalists, and dissidents.

Since March 2012, EFF has been collecting and analyzing malware deployed by pro-Syrian-government hackers that targets supporters of the Syrian opposition, covertly installs surveillance tools on their computers, and collects keystrokes, passwords, and screenshots. Our analysis has identified two distinct groups that have carried out prolonged phishing and malware campaigns using cheap or free Remote Access Tools, such as Black Shades Remote Controller and Dark Comet RAT. To date, EFF has reported on more than a dozen distinct attacks, which we have translated into Arabic in order to alert the Syrian community.

Stay in Touch

NSA Spying

EFF is leading the fight against the NSA's illegal mass surveillance program. Learn more about what the program is, how it works, and what you can do.

Follow EFF

The clock is ticking on Section 215 sunset, but the Senate is in stalemate on NSA spying powers: https://eff.org/r.tpwa

May 22 @ 10:58pm

BREAKING: At the behest of @SenateMajLdr, the Senate will meet Sunday, May 31st in the afternoon, mere hours before Section 215 expires.

May 22 @ 10:20pm

BREAKING: Senator Rand Paul objecting to even one more day of extending Section 215.

May 22 @ 10:08pm
JavaScript license information