Flame cyber virus linked to more malware: report

Sep 17, 2012
A Flame computer virus program is pictured in this screen grab released by Russian security firm Kaspersky Lab. The Flame virus believed to be part of a cyberwarfare effort against Iran was developed as early as 2006 and is linked to at least three other malware programs, a new analysis said Monday.

The Flame virus believed to be part of a cyberwarfare effort against Iran was developed as early as 2006 and is linked to at least three other malware programs, a new analysis said Monday.

The report suggests that the effort to develop Flame, widely reported to be part of a US-Israeli effort to slow Iran's suspected drive, has been going on longer than initially believed and has more components, including some not yet fully understood.

The report by the Russian Kaspersky Lab with US-based Symantec, Germany's computer emergency response team and the 's cybersecurity arm showed that development of the Flame platform dates back to 2006.

An earlier analysis by Kaspersky had reported the code for Flame, which is likely related to Stuxnet and other viruses, was written in 2009.

Kaspersky said the latest analysis shows that "at least three other Flame-related malicious programs were created" but added that "their nature is currently unknown."

It added that "one of these Flame-related unknown malicious objects is currently operating in the wild."

A Kaspersky statement said development of Flame's Command and Control platform started "as early as December 2006" and was "disguised" to hide its true purpose.

A security blog post by Symantec said that Flame was designed in a way to delete any effort to find its source.

"The systems were configured to disable any unnecessary logging events and entries in the database were deleted at regular intervals," the posting said.

"Existing log files were securely deleted from the server on a regular basis. These steps were taken in order to hamper any investigation should the server be acquired by third parties."

Flame previously has been linked to Stuxnet, which was designed to attack made by German industrial giant Siemens and commonly used to manage water supplies, , and other .

Most Stuxnet infections have been discovered in Iran, giving rise to speculation it was intended to sabotage nuclear facilities there. The worm was crafted to recognize the system it was to attack.

Some reports say US and Israeli intelligence services collaborated to develop the computer worm to sabotage Iran's efforts to make a nuclear bomb.

Explore further: Facebook dressed down over 'real names' policy

add to favorites email to friend print save as pdf

Related Stories

Flame virus linked to Stuxnet: researchers (Update 2)

Jun 11, 2012

The Flame computer virus which has been raging in the Middle East has strong links to Stuxnet, a malware program widely believed to have been developed by the United States or Israel, a security firm said Monday.

Symantec warns of new Stuxnet-like virus

Oct 19, 2011

US security firm Symantec has warned of a new computer virus similar to the malicious Stuxnet worm believed to have preyed on Iran's nuclear program.

Iran says Duqu malware under 'control'

Nov 13, 2011

Iran said on Sunday it had found a way to "control" the computer malware Duqu, which is similar to Stuxnet virus which in 2010 attacked its nuclear programme and infected more than 30,000 computers.

Malware hunter Kaspersky warns of cyber war dangers

Jun 06, 2012

The Russian malware hunter whose firm discovered the Flame virus said Wednesday there could be plenty more malicious code out there, and warned he feared a disastrous cyber attack could be coming.

Recommended for you

Facebook dressed down over 'real names' policy

6 hours ago

Facebook says it temporarily restored hundreds of deleted profiles of self-described drag queens and others, but declined to change a policy requiring account holders to use their real names rather than drag names such as ...

Yelp to pay US fine for child privacy violation

13 hours ago

Online ratings operator Yelp agreed to pay $450,000 to settle US charges that it illegally collected data on children, in violation of privacy laws, officials said Wednesday.

A Closer Look: Your (online) life after death

Sep 16, 2014

Sure, you have a lot to do today—laundry, bills, dinner—but it's never too early to start planning for your digital afterlife, the fate of your numerous online accounts once you shed this mortal coil.

Web filter lifts block on gay sites

Sep 16, 2014

A popular online safe-search filter is ending its practice of blocking links to mainstream gay and lesbian advocacy groups for users hoping to avoid obscene sites.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

defactoseven
not rated yet Sep 18, 2012
I love it when they say "some reports say". Why don't they say "we speculate that the US and... etc."

Some reports? what?