State-Sponsored Malware

Malware, short for “malicious software,” is software that is used to disrupt computer operation, gather sensitive information, or gain access to private computer systems. The vast majority of malware is criminal, aimed at obtaining banking information or login credentials for email or social media accounts. But malware is also used by state actors. State intelligence agencies use malware to carry out covert actions against other states’ computer systems, such as Flame and Stuxnet. States and state-supporting actors also use malware to spy on activists, journalists, and dissidents.

Since March 2012, EFF has been collecting and analyzing malware deployed by pro-Syrian-government hackers that targets supporters of the Syrian opposition, covertly installs surveillance tools on their computers, and collects keystrokes, passwords, and screenshots. Our analysis has identified two distinct groups that have carried out prolonged phishing and malware campaigns using cheap or free Remote Access Tools, such as Black Shades Remote Controller and Dark Comet RAT. To date, EFF has reported on more than a dozen distinct attacks, which we have translated into Arabic in order to alert the Syrian community.

Stay in Touch

NSA Spying

EFF is leading the fight against the NSA's illegal mass surveillance program. Learn more about what the program is, how it works, and what you can do.

Follow EFF

Tell your lawmakers: it's time to #MoveFASTR. Support public access to publicly funded research today. https://eff.org/r.2iql

Jul 28 @ 12:56pm

The public deserves access to the research it funds. Read @CreativeCommons on why -now- is the time to #MoveFASTR: https://eff.org/r.o0l4

Jul 28 @ 12:50pm

Over 1,000 users support our campaign to stop ridiculous copyright extensions in TPP. Sign on now: https://eff.org/r.bk2l

Jul 28 @ 12:10pm
JavaScript license information