Things to know about Gauss malware

Last Thursday, Kaspersky Labs announced the discovery of a new malware called Gauss, which specialized in stealing information about bank accounts, finance, and connections to malicious codes like Stuxnet and Flame.

Last Thursday, Kaspersky Labs announced the discovery of a new malware called Gauss, which specialized in stealing information about bank accounts, finance, and connections to malicious codes like Stuxnet and Flame.

Things to know about Gauss malware Picture 1Things to know about Gauss malware Picture 1

Here is what to know about this dangerous malware:

Characteristics

According to Kaspersky Labs' representative, Gauss is a complex spy software made up of Flame, Stuxnet has spread in Iran and the Middle East earlier this year. However, unlike viruses that serve network warfare, Gauss's main purpose is to steal bank information. Kaspersky said it found it on the Lebanese, Citibank and PayPal systems. And its main line is espionage, not theft.

Operating system infection

Gauss mainly infects Windows 32 bit versions. It also has separate spy modules spread over USB drives on 64-bit systems. In addition, some of its modules do not work with Windows 7 Service Pack 1. Gauss does not infect Mac and Linux operating systems.

The most infected area

Almost all known incidents occur only in the Middle East. Kaspersky has detected 1,660 cases in Lebanon, 483 in Israel, and 261 in Palestinian territory. Although there were 43 cases discovered in the US, Kaspersky suspected that these computers were once in the Middle East, and merely used VPNs or anonymous networks. Kaspersky collected 2,500 templates, but only those using Kaspersky antivirus products, but the actual number is definitely higher.

Operation time

Kaspersky said the malware has been in operation since September 10 last year and has been shut down since July this year.

Is Gauss dangerous for users in the world?

According to Kaspersky representatives, this capability is not much, mainly in some regions and countries, especially in the Middle East because it is not like other spreading viruses.

If the user suspects that his computer has been infected with Gauss, he or she can visit this site to check. This is a page that Kaspersky provides free to detect and destroy malicious code.

4 ★ | 2 Vote