H L Data Storage Store Banner 970x90
Breaking News

DJI Air 2S Melds Incredible Image Quality With Unmatched Flight Performance Fujifilm launches FUJINON Lens XF18mmF1.4 R LM WR ASRock Launches the Radeon RX 6900 XT OC Formula 16GB Graphics Cards BIOSTAR ANNOUNCES THE NEW B550T-SILVER MOTHERBOARD Unity will add native NVIDIA DLSS support to its game engine

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

Kaspersky Reveals New Advanced Cyber Threat

Kaspersky Reveals New Advanced Cyber Threat

Enterprise & IT May 28,2012 0

Kaspersky Lab has discovered a highly sophisticated malicious program that is actively being used as a cyber weapon attacking entities in several countries. The research firm said on Monday that the complexity and functionality of the malicious program exceeded those of all other cyber menaces known.

The malware was discovered by Kaspersky Lab's experts during an investigation prompted by the International Telecommunication Union (ITU). The malicious program, detected as Worm.Win32.Flame by Kaspersky Lab's security products, is designed to carry out cyber espionage. It can steal information, including but not limited to computer display contents, information about targeted systems, stored files, contact data and even audio conversations.

The independent research was initiated by ITU and Kaspersky Lab after a series of incidents with another, still unknown, destructive malware program - codenamed Wiper - which deleted data on a number of computers in the Western Asia region. This particular malware is yet to be discovered, but during the analysis of these incidents, Kaspersky Lab?s experts, in coordination with ITU, came across a new type of malware, now known as Flame. Preliminary findings indicate that this malware has been "in the wild" for more than two years - since March 2010. Due to its extreme complexity, plus the targeted nature of the attacks, no security software detected it.

Although the features of Flame differ compared with those of previous notable cyber weapons such as Duqu and Stuxnet, the geography of attacks, use of specific software vulnerabilities, and the fact that only selected computers are being targeted all indicate that Flame belongs to the same category of super-cyberweapons.

Commenting on uncovering Flame, Eugene Kaspersky, CEO and co-founder of Kaspersky Lab, said: "The risk of cyber warfare has been one of the most serious topics in the field of information security for several years now. Stuxnet and Duqu belonged to a single chain of attacks, which raised cyberwar-related concerns worldwide. The Flame malware looks to be another phase in this war, and it?s important to understand that such cyber weapons can easily be used against any country. Unlike with conventional warfare, the more developed countries are actually the most vulnerable in this case."

The primary purpose of Flame appears to be cyber espionage, by stealing information from infected machines. Such information is then sent to a network of command-and-control servers located in many different parts of the world. The diverse nature of the stolen information, which can include documents, screenshots, audio recordings and interception of network traffic, makes it one of the most advanced and complete attack-toolkits ever discovered. The exact infection vector has still to be revealed, but it is already clear that Flame has the ability to replicate over a local network using several methods, including the same printer vulnerability and USB infection method exploited by Stuxnet.

Alexander Gostev, Chief Security Expert at Kaspersky Lab, commented: "The preliminary findings of the research, conducted upon an urgent request from ITU, confirm the highly targeted nature of this malicious program. One of the most alarming facts is that the Flame cyber-attack campaign is currently in its active phase, and its operator is consistently surveilling infected systems, collecting information and targeting new systems to accomplish its unknown goals."

According to information known so far, Flame consists of multiple modules and is made up of several megabytes of executable code in total - making it around 20 times larger than Stuxnet.

The initial point of entry if Falme is unknown. Security experts have some suspicions about possible use of the MS10-033 vulnerability, but they cannot confirm this now.

Tags: KasperskyVirus
Previous Post
Samsung Galaxy S III Sales Begin
Next Post
LG Display Develops First 5-inch Full HD LCD Panel For Smartphones

Related Posts

  • Samsung Laptop Full of Notorious Malware Is On Sale For $1.2M

  • Hackers Target Microsoft Office's Vulnerabilities

  • Hackers Took Over Asus Software to Inject Malicious Code to Laptops

  • Kaspersky Lab Files Antitrust Complaint Against Apple

  • Cryptominers Gain Ground Over Ransomware

  • Kaspersky Lab Moving Core Infrastructure to Switzerland

  • Kaspersky Lab Denies Any kind of Misbehavior

  • Kaspersky Lab Takes Legal Action Against the U.S. Government Over Antivirus Software Ban

H L Data Storage Store Banner 300x600

 

Latest News

DJI Air 2S Melds Incredible Image Quality With Unmatched Flight Performance
Consumer Electronics

DJI Air 2S Melds Incredible Image Quality With Unmatched Flight Performance

Fujifilm launches FUJINON Lens XF18mmF1.4 R LM WR
Cameras

Fujifilm launches FUJINON Lens XF18mmF1.4 R LM WR

ASRock Launches the Radeon RX 6900 XT OC Formula 16GB Graphics Cards
GPUs

ASRock Launches the Radeon RX 6900 XT OC Formula 16GB Graphics Cards

BIOSTAR ANNOUNCES THE NEW B550T-SILVER MOTHERBOARD
PC components

BIOSTAR ANNOUNCES THE NEW B550T-SILVER MOTHERBOARD

Unity will add native NVIDIA DLSS support to its game engine
Gaming

Unity will add native NVIDIA DLSS support to its game engine

Popular Reviews

CeBIT 2005

CeBIT 2005

Zidoo Z9S 4K Media Player review

Zidoo Z9S 4K Media Player review

CeBIT 2006

CeBIT 2006

LiteOn iHBS112 review

LiteOn iHBS112 review

Club3D HD3850

Club3D HD3850

Crucial P1 NVMe 1TB SSD review

Crucial P1 NVMe 1TB SSD review

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Hitachi DZ-MV100A DVD Camcorder

Hitachi DZ-MV100A DVD Camcorder

  • Home
  • News
  • Reviews
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed