The computer virus used in targeted attacks against Japanese diplomatic missions overseas was designed to transmit identification data and other information from infected computers to two servers in China, it has been learned.
One of the two servers in China is registered at a domain that was also used in cyber-attacks against online search giant Google in 2009-2010, sources said Thursday.
This and other circumstantial evidence suggests the virus is part of international espionage efforts targeting classified Japanese diplomatic information.
The virus has infected dozens of computers at Japanese diplomatic offices in 10 countries, including the Japanese Embassy in South Korea, since this summer.
According to sources close to the case, the virus is called “BKDR_AGENT.MOF.”