Printed from http://www.electronista.com

'Flame' cyber-attack aimed at Middle Eastern countries

updated 03:51 pm EDT, Tue May 29, 2012

Complex data vacuum likely government-backed

Russian security firm Kaspersky has uncovered a massive malware attack, referred to as Flame, that is believed to have gathered sensitive data from a wide array of countries, including Israel and Iran. The malware is said to be modular and expandable in a manner reminiscent of a smartphone app library. The BBC reports that the complexity of the malware has led experts to believe that it could only have been developed with the assistance of a government entity.

Kaspersky researchers were investigating another malware threat, known as Wiper, in conjunction with the UN's International Telecommunication Union. In a scan of affected systems, the researchers ran across the Flame malware, and they now believe that it has been active in since at least August of 2010.

Unlike other malware, Flame doesn't seek to cause physical damage or to steal money from bank accounts. Instead, the program logs just about everything possible on an infected system. Once present, it sniffs network traffic, takes screenshots, records audio conversations, logs keystrokes, and so on. The program's code is about 20MB in size, and researchers expect it will take years to analyze.

Flame was found to be present on more than 600 computers, ranging from individuals to academic institutions and businesses to government systems. Countries affected by the malware included Iran, Israel, Sudan, Syria, Lebanon, Saudi Arabia, Egypt, and others. Experts say the specificity of the geographic targeting of the malware, as well as the complexity of its design, lend further credence to the notion that the attack was developed with government assistance.

Kaspersky has yet to release any detailed information on dealing with a Flame infection, though it seems likely that the malware is limited to specific targets, and it may not pose much of a wider threat. In the past, other malware, such as Duqu has infiltrated networks in order to steal data, but none are said to have displayed the level of sophistication seen in the Flame code.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

  1. BigMac2

    Forum Regular

    Joined: Dec 2000

    0

    More Kaspersky weekly reports BS

    ...

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

Cat B100

Cat is primarily known for its heavy-duty machinery used in the construction industry and farming, among other areas. What may not be ...

Linksys EA6900 AC Router

As 802.11ac networking begins to makes its way into more and more devices, you may find yourself considering an upgrade for your home ...

D-Link DIR-510L 802.11AC travel router

Having Internet access in hotels and other similar locations used to be a miasma of connectivity issues. If Wi-Fi was available, it wa ...

Sponsor

toggle

Most Commented

 
toggle

Popular News