Developer quits DarkComet due to abuse

Spread the love

The developer of the remote access tool DarkComet has stopped development and removed downloads. The tool was often used as spyware; the French developer fears being held responsible for this.

Who to the download page from DarkComet, instead of downloads, a message is shown where the developer explains that the remote access tool has stopped. According to him, users of the software have not adhered to the terms of use and he has stopped because of the extensive abuse of the software. He fears being held responsible for this. The software is said to have been used in Syria, among other places, to keep an eye on dissidents.

At first glance, DarkComet is a legitimate tool for remote management of computers, but the software contained necessary features that would be of interest to malicious parties. For example, items can be stolen from the clipboard and security updates can be uninstalled.

It is also possible to generate an executable that installs the software unnoticed, after which a connection is made with a server of the attacker. In addition, the icon of the software can be customized as desired, so that the software can, for example, pretend to be legitimate, and an option can be turned on to automatically install the software again after installation.

The software even includes the ability to perform ddos ​​attacks and is therefore recognized as malware by many virus scanners. However, the developer has always maintained that it has no malicious intent. In addition to developing DarkComet, he is also ceasing development of a number of other dubious tools, including one that can stealthily download files to a computer.

Image: MalwareBytes

You might also like