“Kaspersky Lab” told about a Trojan program called Slingshot, which is able to steal any data from victim computers, infecting network routers manufactured by MikroTik.
Infection of the router occurs by downloading a malicious DLL file on it, which replaces the usual one. After that, the router gets the ability to download and save other malicious files at the request of intruders and distribute them to computers on the local network.
In the company MikroTik already know about the problem and released the necessary update, however Kaspersky Lab notes that the flashing of the routers does not completely protect against the virus. In addition, routers from other manufacturers may be attacked.
Slingshot, which experts call a “masterpiece”, consists of two parts. One of them works at the core level of the system, without causing a “blue screen of death” (unlike other similar Trojans), the second manages files, copies the necessary data, takes screenshots, steals personal information and so on.
When a threat is detected, Slingshot can turn off its components – this makes it especially dangerous.