Friday, March 06, 2015
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Google Introduces Insurance Shopping Site
U.S. Trade Office Releases Latest Notorious Markets List
MPEG LA Introduces License for DisplayPort
Toshiba Starts Shipping 20-Megapixel CMOS Image Sensor For Mobile Devices
Larger iPad Production Pushed Back For September
Intel Outlines 2015 Gaming News at GDC
HBO, Apple To Launch Video Streaming Service: report
Xbox One wireless controller Adapter Coming To Windows PCs
Active Discussions
Hello
Newbie
Need serious help!!!!
burning
nvidia 6200 review
Burning Multimedia in track 0
I'm lazy. Please help.
sanyo e6 camera
 Home > News > General Computing > Kaspers...
Last 7 Days News : SU MO TU WE TH FR SA All News

Monday, October 15, 2012
Kaspersky Discovers New version Of Flams Virus


Kaspersky Lab today announced the discovery of miniFlame, a small and highly flexible malicious program designed to steal data and control infected systems during targeted cyber espionage operations.

miniFlame, also known as SPE, was found by Kaspersky Lab?s experts in July 2012, and was originally identified as a Flame module. However, in September 2012, Kaspersky Lab's research team conducted an analysis of Flame's command & control servers (C&C) and from the analysis found that the miniFlame module was actually an interoperable tool that could be used as an independent malicious program, or concurrently as plug-in for both the Flame and Gauss malware.

Kaspersky analysis of miniFlame showed there were several versions created between 2010 and 2011, with some variants still being active in the wild. The analysis also revealed new evidence of the cooperation between the creators of Flame and Gauss, as both malicious programs can use miniFlame as a "plug-in" for their operations.

According to Kaspersky, miniFlame is based on the same architectural platform as Flame. It can function as its own independent cyber espionage program or as a component inside both Flame and Gauss. The cyber espionage tool operates as a backdoor designed for data theft and direct access to infected systems.

To date, Kaspersky Lab has identified six of these variants, covering two major generations: 4.x and 5.x.

According to Kaspersky Lab's data, the number of infections is between 10-20 machines. The total number of infections worldwide is estimated at 50-60.

The original infection vector of miniFlame is yet to be determined.

"Given the confirmed relationship between miniFlame, Flame, and Gauss, miniFlame may be installed on machines already infected by Flame or Gauss," Kaspersky said. "Once installed, miniFlame operates as a backdoor and enables the malware operators to obtain any file from an infected machine."

Additional info-stealing capabilities include making screenshots of an infected computer while it's running a specific program or application in such as a web browser, Microsoft Office program, Adobe Reader, instant messenger service, or an FTP client. miniFlame uploads the stolen data by connecting to its C&C server. Separately, at the request from miniFlame's C&C operator, an additional data-stealing module can be sent to an infected system, which infects USB drives and uses them to store data that's collected from infected machines without an internet connection.


Previous
Next
New Licensing Program for DVD-Software Manufacturers and DVD-PC Manufacturers        All News        NVIDIA Releases CUDA 5
Former Google Colleague Named Yahoo Chief Operating Officer     General Computing News      Microsoft Introduces Xbox Music

Get RSS feed Easy Print E-Mail this Message

Related News
Researchers Identify iOS Espionage App
Researchers Identify New iOS Vulnerability
Kaspersky Identifies New Asia-based Hacking Group
Dropbox, WordPress Used To Spread Malware
Microsoft Says Viruses Are Back On The Rise
Kaspersky Says Hacker Group Has Been Targeting Online Games
First Targeted Attack Utilising Malware for Android Devices Reported
Cyber Attack Targets Nato, Government Websites
Stuxnet Roots Found Back in 2005
Java Exploit Behind "Red October" Cyber Attacks
FTC Warns Small Businesses Of Spam Email
Kaspersky Says 'Red October' Virus Has Been Targeting Diplomatic and Government Agencies

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2015 - All rights reserved -
Privacy policy - Contact Us .