web analytics
July 24, 2014 / 26 Tammuz, 5774
Israel at War: Operation Protective Edge
 
 
At a Glance
News & Views
Sponsored Post
IDC Advocacy Room IDC Fights War on Another Front

Student Union opens ‘hasbara’ room in effort to fill public diplomacy vacuum.



Thousands of Computers in Iran, Mid-East, Attacked by ‘Flame’ Virus


Flame Virus

Photo Credit: Yossi Zamir/Flash 90

Russian computer security giant Kaspersky Lab announced on Monday the discovery of a highly sophisticated malicious program that is actively being used as a cyber weapon attacking entities in several countries. The complexity and functionality of the newly discovered malicious program exceed those of all other cyber menaces known to date.

Kaspersky’s research shows that the largest number of infected machines are in Iran, followed by the Israel/Palestine region, and Sudan and Syria.

Kaspersky Lab  is a Moscow headquartered and owned multi-national computer security company, co-founded by Natalia and Eugene Kaspersky in 1997. It is the world’s largest privately held vendor of software security products.

The malware, dubbed Flame, was discovered by Kaspersky Lab’s experts during an investigation prompted by the International Telecommunication Union (ITU). The malicious program, detected as Worm.Win32.Flame, is designed to carry out cyber espionage. It can steal valuable information, including but not limited to computer display contents, information about targeted systems, stored files, contact data and even audio conversations.

Kaspersky was unable to name the maker of the Flame, but experts suspect that the complexity of the program means that it took the resources of a major industrial country, such as China, The U.S., Russia or Israel to create and deploy it.

Last Tuesday, the Iranian oil ministry said that its IT systems had suffered no lasting damage from a suspected cyber-attack, but its experts would require two or three days to investigate and address the impact of the virus.

The virus hit the internet and communications systems of the oil ministry and national oil company late on Sunday of last week, forcing Iran to disconnect the control systems of Kharg Island, which handles the vast majority of Iran’s crude exports, and a number of other oil facilities.

ITU and Kaspersky Lab were following up on a series of such incidents, which they suspect were born by another, still unknown, destructive malware program – code named Wiper – which deleted data on a number of computers in the Western Asia region. This particular malware is yet to be discovered, but during the analysis of those incidents, the experts came across the Flame.

According to Kaspersky Lab, preliminary findings indicate that this malware has been “in the wild” for more than two years – since March, 2010. Due to its extreme complexity, plus the targeted nature of the attacks, no security software detected it.

Although the features of Flame differ from the previous notable cyber weapons, the Stuxnet virus that sabotaged Iran’s nuclear facilities back in 2010, and the data-stealing virus Duqu, the geography of the Flame attacks, the use of specific software vulnerabilities, and the fact that only selected computers are being targeted, indicate that Flame belongs to the same category of super-cyberweapons.

CEO and co-founder of Kaspersky Lab Eugene Kaspersky said that “the risk of cyber warfare has been one of the most serious topics in the field of information security for several years now. Stuxnet and Duqu belonged to a single chain of attacks, which raised cyberwar-related concerns worldwide. The Flame malware looks to be another phase in this war, and it’s important to understand that such cyber weapons can easily be used against any country. Unlike with conventional warfare, the more developed countries are actually the most vulnerable in this case.”

The primary purpose of Flame appears to be cyber espionage, by stealing information from infected machines. Such information is then sent to a network of command-and-control servers located in many different parts of the world.

The diverse nature of the stolen information, which can include documents, screenshots, audio recordings and interception of network traffic, makes it one of the most advanced and complete attack-toolkits ever discovered. The exact infection vector has still to be revealed, but it is already clear that Flame has the ability to replicate over a local network using several methods, including the same printer vulnerability and USB infection method exploited by Stuxnet.

Alexander Gostev, Chief Security Expert at Kaspersky Lab, commented: “One of the most alarming facts is that the Flame cyber-attack campaign is currently in its active phase, and its operator is consistently surveilling infected systems, collecting information and targeting new systems to accomplish its unknown goals.”

About the Author:


If you don't see your comment after publishing it, refresh the page.

Our comments section is intended for meaningful responses and debates in a civilized manner. We ask that you respect the fact that we are a religious Jewish website and avoid inappropriate language at all cost.

If you promote any foreign religions, gods or messiahs, lies about Israel, anti-Semitism, or advocate violence (except against terrorists), your permission to comment may be revoked.

Please use the Facebook Tab below to leave your comment:

5 Responses to “Thousands of Computers in Iran, Mid-East, Attacked by ‘Flame’ Virus”

  1. ‘Flame’ – A virus far more dangerous than the Stuxnet worm
    ‘Flame’ has been discovered in thousands of Middle East computers.

  2. Ron Wise says:

    Israeli computers?

  3. Beware fo the “Flame”, Virus more dangerous than the Worm in the Middle East. Able to pick up on midia and sound. Rabbi Leon Pettyjohn.

  4. West Bank computers

  5. West Bank Computers Ok! Rabbi Leon Pettyjohn.

Comments are closed.

SocialTwist Tell-a-Friend

Loading Facebook Comments ...
Loading Disqus Comments ...
Current Top Story
JFK Airport, NY
FAA Lifts Ban on Flights to Israel
Latest News Stories

8:03 am Ashkelon coastal region, Sha’ar HaNegev regional council 8:01 am Yad Mordechai, Netiv Ha’Asara 7:30 am Eshkol regional council – rocket exploded with no warning received

JFK Airport, NY

Last night, the FAA lifted their travel ban on flights to Israel.

Senator Ted Cruz (R-TX) wants answers about the FAA ban on flights to Israel.

Sen Ted Cruz wants the administration to give straight answers to questions about the FAA ban on Israel.

Why is the ban on Israel’s airport different from all other FAA bans?

Abbas adopts Hamas as peace partner, big brave Kerry scurries out of Israel despite FAA ban and Mashaal goes off his rocker.

Yet again, non-anti-Semitic ‘pro-Palestinian’ demonstrators can’t quite seem to break free of anti-Semitic jargon.

Tomer Sargon of Netivot heard that IDF soldiers haven’t been able to bath in days, for lack of water and showering facilities out in the field. So he took it upon himself to help, by driving down to the Gaza border with a truck filled with huge water containers, just so the soldiers could have […]

Hundreds of Arabs gathered near Kever Rachel (Rachel’s Tomb in Bethlehem) Wednesday to attack IDF soldiers with stones and firebombs. Riots were also reported in Beit Omar, near Hebron.

Shots were fired outside the Hadar Mall in Talpiot, Jerusalem Wednesday. One individuals opened fire from a moped outside the mall this evening. No injuries or property damage was reported. Police said Wednesday night that a man suspected of having staged the attack was arrested in the Gilo section of south Jerusalem. Police have determined […]

Hamas terrorists fired mortar rounds Wednesday at an IDF field hospital on the Israeli side of the Gaza border, according to a report on Israel Radio. The Israeli army set up the hospital last week to treat Palestinian victims of Hamas’ “human shields” policy, but the report indicated that the terror gang has prevented wounded […]

The Al-Wafa hospital located near Shajuayia in Gaza City was a Hamas military compound.

US extends ban on flights to Israel despite lack of such precaution in similar or worse situations.

Hamas terrorists took over Waffa hospital in Gaza and were using it as a terror base. The IDF communicated with the medical staff to ensure no patients or staff were inside before blowing it up.

More Articles from Jacob Edelist
F130210FFMS04

“Over-exposure of security and intelligence activities may seriously harm state security.”

Handle of a footed marble basin decorated with Seilenoi heads, the 1st century BCE.

Lionized as “the greatest builder in human history,” King Herod was also demonized for his cruelty and his shady religious origins.

“We expect continued firing of hundreds of rockets in the coming days.”

The plan is to stagger their recruitment, to allow IDF manpower officials to study the process.

Hamas called the meeting to try and avoid further casualties.

Some of the supervised, ‘bug-free,’ leafy vegetable growers are using higher levels of pesticides than allowed by Health Ministry standards.

Iranian Defense Minister Ahmad Vahidi said on Sunday that Iran has in its possession UAVs (unmanned aerial vehicles) which are far more advanced than the one which the Hezbollah recently sent into Israel.

Last Sunday, Netanyahu told Likud ministers he plans on adopting part of the report without relating to broad legal interpretations, to avoid international criticism. Still, the proposal will add legal flexibility and remove bureaucratic obstacles, making Jewish construction in Judea and Samaria considerably easier.

    Latest Poll

    Do you think the FAA ban on US flights to Israel is political?






    View Results

    Loading ... Loading ...

Printed from: http://www.jewishpress.com/news/breaking-news/thousands-of-computers-in-iran-mid-east-attacked-by-flame-virus/2012/05/28/

Scan this QR code to visit this page online: