Russian IT professionals have discovered a new, highly sophisticated computer virus that they have named Flame. Structurally resembles the malware Stuxnet the virus that had attacked Iran’s nuclear facilities, announced the security firm Kaspersky Lab. Flame but was significantly larger and can spy on your computer in several ways:
Kaspersky released this small section of the flame source code.
The software can record the findings on data from Kaspersky’s e-mails, documents, and from chats, make screenshots and microphones on.
“The complexity and functionality of the newly discovered malicious software exceeds all previously known cyber-threats,” said company CEO Eugene Kaspersky. IN QUESTION When Flame also happened to be the first known computer virus that could take advantage of the wireless Bluetooth technology to send commands and data and to obtain, said Roel Schouwenberg of Kaspersky. Some characteristics of both Stuxnet and Flame suggested that client or programming teams were responsible. It is very likely that there were two teams IN QUESTION, “which basically work the same program, but use two very different approaches,” said Schouwenberg.
“Very careful use of” Flame of
This could also explain why Flame has again re-infest computers in the Middle East. Infected computers, according to Kaspersky, especially in Iran, Israel, Palestine and Syria. Some systems in the Sudan, Saudi Arabia, Egypt and Lebanon were affected. In contrast, the malicious software is so far neither in Europe nor in the U.S. was discovered. A total of up to 5,000 computers have been infected. To date, approximately 600 infected systems identified – of which 198 are in Iran.
With a size of about 20 megabytes Flame is relatively large. The virus consists of 20 individual software modules, which were analyzed by Kaspersky not all the details. He also was equipped with a reload option, so that the pest can be constantly expanded with additional functions. The program is spreading via infected, according to Kaspersky USB sticks, malicious e-mails and websites and through local networks.
ARD computer expert Jörg suspected slide that has been used very selectively to the Flame espionage. The virus is not directed against normal users, but to a limited group of users in the Middle East. The complexity of the program make it unlikely that a small group of hackers was responsible. Presumably, the client is a government that have the necessary financial resources.
Who is behind Flame?
Even with Stuxnet was never clear who had been programming in order. Since Stuxnet was directed against the Iranian nuclear program, had been speculation about whether Israel, the United States, or both together were responsible.
The contract for the Flame investigation Kaspersky Lab analyzes the Flame on, claims to be received by the UN. The UN communications agency ITU had asked the IT company to provide analysis, after data had disappeared in the Middle East in a big way.
Iran has responded already on the unmasking of Flame. It was an anti-virus software produced could identify and remove the flame, the Iranian Ministry of Communications announced.
Virus remained undetected for years
Apparently Flame remained undetected for years. According to Kaspersky, the program has been active for up to five years. It might therefore have been developed in parallel to Stuxnet and used. Should the data confirm the Russian company, would be to Stuxnet Flame and the third Duqu discovered cyber-weapon, which was spread on a large scale.