Earlier this year, search engine giant Google announced it had been subjected to cyber attacks back in December and more than 20 other companies experienced similar attacks. The attacks, termed Aurora, now appear to have hit even more companies than originally reported, according to DarkReading.com.
However, researchers may be closing in on the identity of the creator of the malware used in the attacks.
Greg Hoglund, founder and CEO of HBGary, who released a report on the investigation, said:
“The attack called Operation Aurora is larger than just [the attacks acknowledged at the] 30 companies. That attack is still in operation and is much larger.”
Presently, there is little evidence the malware developer was within the Chinese government, however, the coding did have Chinese-language ties. HBGary believes it has also identified specific markers that will help to reveal the identity of the code developer.
The company has also released a free cleaning tool, which will clean the Aurora malware off a victim’s computer.
Researchers with Mandiant also claim to have been able to preliminarily identify the Aurora developers based on the coding used. Kevin Mandia, CEO of Mandiant, said, “We feel like we know a couple of them in their coding — we recognize their trademarks … down to the person.”