New cyber weapon found on Middle East computers
Reuters:
The Washington Post has more on the virus. According to the Post, "... It uses five encryption methods, three compression techniques and at least five file formats. Its means of gathering intelligence include logging keyboard strokes, activating microphones to record conversations and taking screen shots, CrySys reported." It can also be given commands by Bluetooth.
Security experts have discovered a new data-stealing virus dubbed Flame they say has lurked inside thousands of computers across the Middle East for as long as five years as part of a sophisticated cyber warfare campaign.It is the most complex piece of malicious software discovered to date, said Kaspersky Lab security senior researcher Roel Schouwenberg, whose company discovered the virus. The results of the Lab's work were made available on Monday.Schouwenberg said he did not know who built Flame.If the Lab's analysis is correct, Flame could be the third major cyber weapon uncovered after the Stuxnet virus that attackedIran's nuclear program in 2010, and its data-stealing cousin Duqu, named after the Star Wars villain.The discovery by one of the world's largest makers of anti-virus software will likely fuel speculation that nations have already secretly deployed other cyber weapons.
... The virus contains about 20 times as much code as Stuxnet, which attacked an Iranian uranium enrichment facility, causing centrifuges to fail. It has about 100 times as much code as a typical virus designed to steal financial information, Schouwenberg said.
Flame can gather data files, remotely change settings on computers, turn on PC microphones to record conversations, take screen shots and log instant messaging chats.
He said there was evidence to suggest the code was commissioned by the same nation or nations that were behind Stuxnet and Duqu, which were built on a common platform.
Both Flame and Stuxnet appear to infect machines by exploiting the same flaw in the Windows operating system and employ a similar way of spreading....I suspect Israel is the logical source of this program. They are one of the few countries in the region with people clever enough to compile such a program and implement it. It appears that it would be helpful in finding out Iran's intentions and abilities.
The Washington Post has more on the virus. According to the Post, "... It uses five encryption methods, three compression techniques and at least five file formats. Its means of gathering intelligence include logging keyboard strokes, activating microphones to record conversations and taking screen shots, CrySys reported." It can also be given commands by Bluetooth.
Comments
Post a Comment