• Hype
  • Murai
  • Lipstiq
  • Varnam
  • Hangat
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Mobile Gaming
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
    • Contact Us
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Mobile Gaming
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Compu-zoneUpdated
    • ViewnetUpdated
    • Sri ComputersUpdated
    • StartecUpdated
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
    • Contact Us
No Result
View All Result
Lowyat.NET
No Result
View All Result

Russian Hackers Hide Malware Instructions In Instagram Comments

by Farhan
June 8, 2017
Turla Firefox Extension Malware
Share on WhatsappShare on TelegramThreads

Command and control servers are often the weak point for malware. Which is why hiding them is rather important. For a group of Russian hackers, this involves hiding commands and instructions in Instagram comments.

Security group ESET published a report on the Turla group’s watering hole campaign, where this technique was first noticed. The idea is that the Turla malware targeted government officials and agencies with a compromised Firefox plugin. The plugin uses a bit.ly link to look for its C&C server, but the link is no hardcoded into the malware itself.

Instead, it is directed to a particular post on Instagram; in this case a specific photo posted by Britney Spears. The malware scans the comments and turns them into hash values; and it’s looking for a specific value in mind. The comment itself resembles any other badly written Instagram post, but also contains hidden characters that help add up to the required hash value.

Britney Instagram Malware Commands

Running the hash through regex returns a specific bit.ly link; which contains the address for the actual C&C server.

This creative use of social media aside, the malware aside is a relatively standard backdoor. It’s capable of executing files, uploading and downloading files to the C&C server, and read directory contents. Mostly, it looks to be a module for spying on foreign governments.

Turla Secret CC server

Hiding comments in social media makes it more difficult for security programmes to detect suspicious traffic. Since people are more than likely to be accessing those sites on their own, allowing the malware to hide its activity more efficiently. It also allows the hackers to change the C&C server more easily, since all they have to do is tell the malware what hash value to look for.

RELATED:  Instagram To Drop End-To-End Encrypted DMs After 8 May 2026

[Source: ESET]

Filed Under ESETInstagramMalwareSocial Media
Updated 10:59 am, Thu, 8 June 17
SendShareShareShare1Tweet1

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

No Result
View All Result

TRENDING THIS WEEK

  1. 1
    Streaming

    Netflix Now Requires Unique Email For Each Profile Under Shared Accounts

  2. 2
    Fintech

    BNM To Phase Out Proprietary QR Payment Networks In Malaysia By 2028

  3. 3
    Computing

    Apple Hikes Prices For Certain Products In Malaysia; Some See An Increase Of Over RM2,000

  4. 4
    Transportation

    LRT3 Ditches Tokens For QR Code Tickets, Open Payments Planned For The Future

  5. 5
    News

    Malaysia’s New Passport Officially Launches

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Varnam
  • Hangat
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Editorial Policy
  • Terms of Use
  • Contact Us

©2026 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
  • Forums
  • Laptops
  • Telco
  • Mobile
  • Gaming
  • Fintech
  • Artificial Intelligence
  • Cryptocurrency
  • Cyber Security
  • Hybrid Vehicles
  • Advertise with Us

©2026 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
  • Forums
  • Laptops
  • Telco
  • Mobile
  • Gaming
  • Fintech
  • Artificial Intelligence
  • Cryptocurrency
  • Cyber Security
  • Hybrid Vehicles
  • Advertise with Us

©2026 VIJANDREN RAMADASS. ALL RIGHTS RESERVED.