Sowbug espionage group

Symantec has spotted a previously unknown cyber espionage group called Sowbug that targets South American and Southeast Asian governments.

Sowbug has been focusing on foreign policy institutions and diplomatic targets using espionage attacks to steal documents from victim organizations it infiltrates, such as those from Argentina, Brazil, Ecuador, Peru, Brunei and Malaysia.

Symantec has seen Sowbug activity since the discovery in March of 2017, but the group has been active since early 2015, according to the report.

Sowbug uses a custom Felismus malware used to steal documents and carry out stealthy surveillance. 

Leave a Reply

Close Menu