Massive cyber-attack dubbed Flame uncovered in Middle East, say researchers

CNET

(CNET) A complex targeted virus has been discovered stealing data in the Middle East, security researchers announced today.

The malware -- dubbed Flame -- has been operation since 2010 and appears to be a state sponsored, Kaspersky Labs said today, but it was not sure of its origins. Flame is designed to steal information about targeted systems and stored files as well as computer display contents and audio conversations, CNET reports.

"The complexity and functionality of the newly discovered malicious program exceed those of all other cyber menaces known to date," Kaspersky Labs said in statement announcing the malware's discovery.

The virus is about 20 times the size of Stuxnet, malware that targeted the controls of an Iranian nuclear facility. The largest concentration of infected machines is in Iran, followed by Israel/Palestine region, Sudan, Syria, Lebanon, Saudi Arabia and Egypt.

"The preliminary findings of the research, conducted upon an urgent request from ITU, confirm the highly targeted nature of this malicious program," Kasperky Labs' chief expert Alexander Gostev said in a statement. "One of the most alarming facts is that the Flame cyber-attack campaign is currently in its active phase, and its operator is consistently surveilling infected systems, collecting information and targeting new systems to accomplish its unknown goals."

Eugene Kaspersky, the founder and CEO of the Kaspersky compared the new virus with Stuxnet and said it appeared to open a new front in state-sponsored cyber warfare. However, he said its full significance won't be understood until more security researchers examine the malware.

"The Flame malware looks to be another phase in this war, and it's important to understand that such cyber weapons can easily be used against any country," Kaspersky said in a statement. "Unlike with conventional warfare, the more developed countries are actually the most vulnerable in this case."

[KansasCity-2012]

This was an attack by the NSA - Nothing's Sacred Administration

[bobnjersey]

[The largest concentration of infected machines is in Iran, followed by Israel/Palestine region, Sudan, Syria, Lebanon, Saudi Arabia and Egypt.]
-------------------------------------
covert activities like this have historically produced an undesirable 'blowback'.

i'll bet there's a legal advisor who wrote a memo or two justifying these actions as 'necessary'.

[jsf14]

Non-lethal weapon.

[verrz]

The last sentence says it all. The more advanced the technology of a given nation, the more vulnerable they are to such attacks. And this type of an attack may appear tame in the near future in the event of actual hostilities breaking out in the Mid-East. When the computers went down some time ago at a local Safeway, people could not even buy their daily groceries. Think bank, government, business, and military computers down and imagine the chaos. On a more positive note, Western governments, while not loudly announcing the fact, are well aware of our vulnerabilities and are diligently working to counter the threat.

[lillyhorton]

So, your saying the US is behind the cyber attacks on Iran? Ummm obvious. Iran should do something about that.

[fedup12]

I wonder if this is one of ours. Or maybe Israel's

[audemus]

Answer who benefits most from an attack such as this on the particular targets that were chosen, and there's your answer.