Flame built by government - Kaspersky

2012-07-05 08:25
Kaspersky Lab does analysis of malware threats at its offices in Moscow. (Duncan Alfreds, News24)

Kaspersky Lab does analysis of malware threats at its offices in Moscow. (Duncan Alfreds, News24)

Multimedia   ·   User Galleries   ·   News in Pictures Send us your pictures  ·  Send us your stories

kalahari.com

Duncan Alfreds

Moscow - While the identity of the Flame virus authors remains elusive, a security company is convinced that the evidence points to a sophisticated government operation.

"Who built Flame? It's some government; I don't know which exactly because we don't have any real hard proof, but it's not the usual cybercriminals," Alex Gostev, chief security expert at Kaspersky Lab told News24.

He said that though Flame made headlines, it was not the first super virus and it is likely that the developers are already working on a more advanced version.

"The guys behind Flame spent at least four years [to build it]. It's not only one - there are different variants: The first one we found in 2008 and the last one was from 2011."

Flame's design was different to the usual malware in that it specifically targeted users in the Middle East and Iranian Oil Ministry computers in particular.

Resources

Gostev said that the skills and network to develop and distribute the virus was extensive and an indicator of the financial resources of its backers.

"It's not only a question of how many people, but how much money they spent to invest. They used really unique crypto algorithm that never before has been used in malware.

"It's a targeted attack of course and I don't know how many targets there are. We found about 500 victims, but I know that in reality it's much higher."

Kaspersky Lab linked the Flame virus to an earlier Stuxnet worm that was identified in 2010, and Gostev said that because there were observable patterns with an earlier worm called Duqu, one could deduce that the same organisation built the malware.

"I think Duqu was created by the same people who created Flame and Stuxnet. When we looked at the information from the common servers, we found some peaks during hours - the same time zone as Moscow, for example," said Gostev.

The US has said that it expects that the next major war will be fought in cyberspace and has spent significant resources to beef up cyber defence capability.

Gostev agreed that cyber war designed to cripple electricity and water infrastructure will most likely be a precursor to an armed conflict.

"A cyber war should be a part of a real war - real military conflict - it's perhaps a zero stage before sending in the troops and bombers.

"Right now it's some kind of intelligence operations - some kind of cold war. In the future it can be more dangerous. Right now we have Stuxnet which destroy something in the real world. From the virtual world, we can destroy real objects."


- Follow Duncan on Twitter


Malware has evolved to match consumer patterns. In this YouTube video, Vitaly Kamluk, chief malware expert at Kaspersky lab explains the process:



Read more on:    kaspersky lab  |  cybercrime
NEXT ON NEWS24X

Voting a 'challenge' in storm-struck NYC

2012-11-05 09:04

Facebook Twitter Google Digg Delicious Yahoo More...

Read News24’s Comments Policy

24.com publishes all comments posted on articles provided that they adhere to our Comments Policy. Should you wish to report a comment for editorial review, please do so by clicking the 'Report Comment' button to the right of each comment.

Comment on this story
25 comments
Add your comment
avatar
Logout
Comment 0 characters remaining
 

Inside News24

 
 
Traffic
Lottery
 
  • Thursday Citrusdal - 16:22 PM
    Road name: N7
    ROADWORKS - stop / go controls in operation between Citrusdal and Clanwilliam (until 2014)
  • Monday Ventersburg - 05:24 AM
    Road name: N1
    ROADWORKS - construction works are underway with a deviation in operation just north of the town centre
 
More traffic reports...
 

Jobs [change area]

Property [change area]

Travel - Look, Book, Go!

Southern Sun - Maputo

Spend 3 nights and pay for 2 at Southern Sun - Maputo for only R4 621 per person sharing. Includes accommodation, return flights, airport taxes and airport transfers. Book now!

Kalahari.com - shop online today

gobii 7” colour LCD eReader + R160 eBook voucher – As seen on TV

Read eBooks, watch videos and listen to music with this great eReader, now only R799. Buy now.

Sizzling hot Weber offer!

57cm compact braai + FREE cover + FREE fish braai for R1299.95. While stocks last. Buy now.

Buy Gordon Ramsay’s ultimate cookery course book + Bokke Se Komuis for FREE!

Buy Gordon Ramsay’s ultimate cookery course for just R368 and get Bokke Se Kombuis, valued at R180, for FREE! Offer valid while stocks last. Buy now!

Wreck It Ralph now available

You and your kids will love this hilarious, arcade-game-hopping adventure from Walt Disney. Available on DVD, Blu-ray and in 3D. Buy now!

Hot and exclusive Coby 7" wifi tablet – only R1299.95

Don’t miss out on this super hot deal of the week, save R300 on the Coby 7” tablet! Dispatched within 24hrs + free delivery. While stocks last. Buy now!

OLX Free Classifieds [change area]

Blackberry z10 (1 day old)

For Sale, Cell Phones - Accessories in South Africa, Gauteng, Johannesburg. Date May 13

Urgent Sale

Vehicles, Motorcycles - Scooters in South Africa, Gauteng, Johannesburg. Date May 13

Aupairs

Jobs, Au pairs & nannies in South Africa, Gauteng, Johannesburg. Date May 12

Apple iPad 2 White 16GB 9.7" Tablet With WiFi & 3G

Two cameras for FaceTime and HD video recording. The dual-core...

From R5499.00

I'm shopping for:

Horoscopes
Aquarius
Aquarius

Even though you almost cannot help it, you probably don’t realise just how distant you are at times. This can be very...read more

Who’s your perfect match?
Click here to find out!
There are new stories on the homepage. Click here to see them.
 
News24
English
Afrikaans
isiZulu
|  OLX  |  PriceCheck  |  Property24  |  Kalahari.com  |  Careers24

Hello 

Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.


Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Settings

Location Settings

News24 allows you to edit the display of certain components based on a location. If you wish to personalise the page based on your preferences, please select a location for each component and click "Submit" in order for the changes to take affect.








Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.