Russian security researchers have uncovered a covert cyber attack that may have been stealing confidential documents since 2007.
Kaspersky Labs advises that the malware has been designed to target government embassies and institutions such as nuclear research or oil and gas research facilities.
Sophisticated enough to recover encrypted and even deleted files the program targets Word files, PDF files, and other document formats with the attack being directed primarily at Eastern European block countries including the former Soviet Republics and Asia.
Although there are similarities between 'Red October' and the 'Stuxnet' cyber attack last year 'Red October' is designed to evade detection and covertly gather documents rather than causing physical damage.
Speculation is rife as to the source of the attack but given the nature of the program, and the fact it actively seeks files encrypted by Cryptofiler as favoured by government agencies, the finger very definitely points at government security organisations.
The BBC provides further detail on this story here.
