Industry News

Remote Access Tool Project Terminated by Developer Following Abuse

The main developer of a highly-popular remote access tool application has called it quits after the application was put to malicious use. Jean-Pierre Lesueur, the developer behind the DarkComet RAT took the files offline and even posted a removal tool for his application.

His decision to terminate the product is based on proof that DarkComet was being used to target Syrian activists who were lured into installing the Trojan over Skype.

“Unlike so many of you seem to believe i can be held responsible of your actions, and if there is something i will not tolerate is to have to pay the consequences for your mistakes and I will not cover for you,” wrote  Lesueur in a note on the project’s web space.

Remote access tools are applications that allow a third party to connect to a computer out of physical reach and take complete control of it. Most of these remote access tools are specially developed for providing support or access to a computer in a different network or region. However, some other tools (including the DarkComet RAT) are mainly designed to keep an eye on children or employees and are designed to provide no visual cues about the presence of a remote connection with the attacker.  In this case, it is just a matter of time until they get put to malicious use.

About the author

Bogdan BOTEZATU

Bogdan Botezatu is living his second childhood at Bitdefender as senior e-threat analyst. When he is not documenting sophisticated strains of malware or writing removal tools, he teaches extreme sports such as surfing the web without protection or rodeo with wild Trojan horses. He believes that most things in life can be beat with strong heuristics and that antimalware research is like working for a secret agency: you need to stay focused at all times, but you get all the glory when you catch the bad guys.