Researchers at Kaspersky Labs\u00a0identified an incredibly-sophisticated advanced-cyber-espionage network that tarrgets diplomatic and government agencies. The malware has been dubbed \u201cRed October,\u201d or Rocra.\n\n\n\tIt has been running for at least five years and during that time it has \u201csuccessfully infiltrated computer networks at diplomatic, governmental and scientific research organizations, gathering data and intelligence from mobile devices, computer systems and network equipment.\u201d\n\n\n\tKaspersky says Rocra rivals the Flame malware in complexity, and it contains exploits created by Chinese hackers and malware modules created by people who speak Russian. The company believes it is likely not the work of a nation-state, suggesting that criminals have created malware that's every bit as powerful as government-made malwaree.\n\n\n\tRocra is known to have targeted the following industries and entities:\n\n\n\tRocra\u2019s main malware body works as a point of entry into the system which can later download modules used for lateral movement. After initial infection, the malware won't propagate by itself\u2014typically, the attackers gather information about the network for a few days, identify key systems and then deploy modules which can compromise other computers in the network, by using the MS08-067 exploit, for instance. In general, the Rocra framework is designed for executing "tasks" that are provided by its C&C servers. Most of the tasks are provided as one-time PE DLL libraries that are received from the server, executed in memory and then immediately discarded.\n\n\n\tOcra has been found on hundreds of computers around the world\u2013including computers in the United States\u2014with the largest number of attacks hitting Russia, Kazakhstan, Azerbaijan, Belgium and India. Interestingly China does not appear to be on the list of nations frequently hit by Rocra. Also worth noting: The exploits from the documents used in spear phishing were created by others and used during cyberattacks against Tibetan activists and military and energy targets in Asia.