Ukraine's computers 'targeted by powerful virus': experts

Mar 08, 2014
Anti-government protesters read the latest news via the internet on a laptop at a barricade in Kiev on February 5, 2014

Dozens of computer networks in Ukraine have been infected by an aggressive new cyber weapon called Snake, according to expert analysis.

The has been increasingly used since the start of this year, even before protests that led to the overthrow of president Viktor Yanukovych, British-based BAE Systems said in a report published Friday.

The complex composition of Snake bears similarities with Stuxnet, the malware that disrupted Iran's in 2010.

Snake—also known as Ouroboros after the serpent in Greek mythology—gives remote attackers "full remote access to the compromised system", BAE said.

Because it can stay inactive for a number of days, it is extremely hard to detect.

Although its origins are unclear, its developers appear to operate it in the same timezone as Moscow—GMT plus four hours—and some Russian text is embedded into the code, BAE says.

BAE has identified 14 cases of Snake in Ukraine since the start of 2014, compared to eight cases in the whole of 2013. In all there have been 32 reported cases in Ukraine since 2010, out of 56 worldwide.

Nigel Inkster, who until 2006 was the head of operations and intelligence at Britain's MI6 foreign intelligence agency, said Russia was most likely behind the on Ukraine.

"If you look at it in probabilistic terms... then the list of suspects boils down to one, he told the Financial Times.

"Until recently the Russians have kept a low profile, but there's no doubt in my mind that they can do the full scope of cyber attacks, from denial of service to the very, very sophisticated."

Explore further: Britain may hire hackers for cyber-defence

add to favorites email to friend print save as pdf

Related Stories

Iran denies behind cyber attacks on US banks

Jan 11, 2013

Iran has denied US media reports it carried out cyber attacks on US banks, the official IRNA news agency said Friday, quoting a statement from Tehran's UN mission. ...

Iran says Duqu malware under 'control'

Nov 13, 2011

Iran said on Sunday it had found a way to "control" the computer malware Duqu, which is similar to Stuxnet virus which in 2010 attacked its nuclear programme and infected more than 30,000 computers.

South Korea's cyber-war ambitions could backfire badly

Feb 25, 2014

South Korea has made a suprisingly public announcement that it plans to develop cyber-weapons for potential use against North Korea. The decision to make its plans known is baffling and the potential conse ...

Chevron says hit by Stuxnet virus in 2010

Nov 09, 2012

Oil giant Chevron was struck by the Stuxnet virus, a sophisticated cyber attack that tore through Iran's nuclear facilities and is believed to have been launched by the United States and Israel.

Recommended for you

Taking great ideas from the lab to the fab

1 hour ago

A "valley of death" is well-known to entrepreneurs—the lull between government funding for research and industry support for prototypes and products. To confront this problem, in 2013 the National Science ...

SR Labs research to expose BadUSB next week in Vegas

2 hours ago

A Berlin-based security research and consulting company will reveal how USB devices can do damage that can conduct two-way malice, from computer to USB or from USB to computer, and can survive traditional ...

US warns retailers on data-stealing malware

3 hours ago

US government cybersecurity watchdogs warned retailers Thursday about malware being circulated that allows hackers to get into computer networks and steal customer data.

User comments : 0