FormBook Malware Targets US Defense Contractors, Aerospace and Manufacturing Sectors
This article from Threatpost.com details Formbook, a malware that can be spread in PDFs, DOCS and XLS files. The malware has been on sale since July for the low price of $29/week. It is primarily a data stealing tool, and can be used as for keylogging, stealing info from HTTP sessions and saving clipboard contents. FireEye has a report on it here. The report states that the malware isnt unique in the way it operates, howevber, “its relative ease of use, affordable pricing structure, and open availability make FormBook an attractive option for cyber criminals.”
The FireEye report includes a list of Formbook targets, wherein 33% of attacks were targeting Aerospace and Defense contractors:
I thought this was an interesting story and report due to the apparent “script kiddie” nature of Formbook. It would be interesting to hear from industry veterans about their experiences with increased accessibility of malware like Formbook, how serious these threats are, and where the world is headed as more people are able to find and use these tools.
Jonathan Duani says
This is a really interesting article. I think that the biggest thing was the people that they were going after. IT was people who most likely had higher level security clearance and could cause information that if, in the wrong hands could be a really big problem.