The group, alternately called “ProjectSauron” and “Strider,” has targeted Russian government entities, a Chinese airline, and an embassy in Belgium, according to cybersecurity firm Symantec. The group’s code references Lord of the Rings super-villain Sauron, whose all-seeing eye kept watch over Middle-earth. Among its techniques: logging keystrokes and stealing files through “a secret backdoor that it creates on infected computers,” reports SC magazine.
Per Symantec: “The group has maintained a low profile until now and its targets have been mainly organizations and individuals that would be of interest to a nation state’s intelligence services.”
[Photo: AF archive/Alamy Stock]