State-Sponsored Malware

Malware, short for “malicious software,” is software that is used to disrupt computer operation, gather sensitive information, or gain access to private computer systems. The vast majority of malware is criminal, aimed at obtaining banking information or login credentials for email or social media accounts. But malware is also used by state actors. State intelligence agencies use malware to carry out covert actions against other states’ computer systems, such as Flame and Stuxnet. States and state-supporting actors also use malware to spy on activists, journalists, and dissidents.

Since March 2012, EFF has been collecting and analyzing malware deployed by pro-Syrian-government hackers that targets supporters of the Syrian opposition, covertly installs surveillance tools on their computers, and collects keystrokes, passwords, and screenshots. Our analysis has identified two distinct groups that have carried out prolonged phishing and malware campaigns using cheap or free Remote Access Tools, such as Black Shades Remote Controller and Dark Comet RAT. To date, EFF has reported on more than a dozen distinct attacks, which we have translated into Arabic in order to alert the Syrian community.

Stay in Touch

NSA Spying

EFF is leading the fight against the NSA's illegal mass surveillance program. Learn more about what the program is, how it works, and what you can do.

Follow EFF

Protesting over the weekend? Keep your data safe with these 10 digital security tips: https://www.eff.org/deeplinks...

Jan 19 @ 6:39pm

Private agreements are implementing much of SOPA in secret, writes @StanfordCIS 's @AnnemarieBridy https://cyberlaw.stanford.edu... #CopyrightWeek

Jan 19 @ 5:55pm

For #CopyrightWeek, EFF's @EFFFalcon talks with @ICGuild about what policymakers should know about today's creators https://www.eff.org/deeplinks...

Jan 19 @ 5:13pm
JavaScript license information