Security firm profiles Regin at least six years after the malware began targeting private individuals and their phone calls. Regin may have taken years to create, which leads Symantec to conclude the malware is one of the top tools used by a nation-state to spy on others.