Wednesday, May 5, 2021

New In-the-Wild Malware Linked to State-Sponsored Flame Targeting Iran

Ars Technica: Security researchers from Symantec and Kaspersky Labs have published a joint report which sheds a great deal of new light on the Flame malware. Notably, they have discovered that the command and control servers behind Flame also supported three other pieces of malware, one of which is currently in circulation. They also found the names or code-names for four of the malware creators, as well as evidence that those creators began working on the code as early as 2006. In addition, they discovered that just one Flame server collected 5.5 GB of data from its targets over an eight-day period. “That’s pretty staggering,” said Symantec’s Vikram Thakur. “If the attackers actually continued their operations in a similar manner or with high frequency over the past five years they probably have terabytes of information collected from pretty much whoever they chose. That’s a lot of information that they could make use of. That would be every target’s life history a few times over.”

The report concludes, “These features are not normally found in malware created by everyday cyber-criminals, reaffirming our initial conclusions that Flame is a nation-state sponsored attack.”

Similar articles

Latest Articles

What is Raw Data?

By itself, raw data doesn’t look like much or mean much, but it has the potential to be processed for analysis.  Processed data comes from...

What is Data Analysis?

Everything measurable that has happened, is happening, and will happen in a business can be boiled down to data. But not all data is...

IBM Begins Cloud Confidentiality...

IBM has positioned its cloud offering against the unique security, compliance and confidentiality needs of specific vertical markets with a sharp focus on finance...

Top Big Data Certifications...

The term Big Data reflects a very real growing trend. By 2020, every human will be generating an astounding 1.7 MB per second. That...