Iran in Flames {3}

by Abel R
Security has been a recurring topic in our class, therefore I think a great topic to talk about is the recent attacks of the  Flame virus. The Flame virus is spyware,at its core, it has the ability to log keystrokes,  capture screenshots, and record conversations using microphones built into computers (Socolovsky 2012). There is a lot of speculation that this was part of a cyber warfare attack since most of the attacks have been centered in Iraq, however no one has claimed responsibility. This virus is being compared to the 2010 Stuxnet virus, which is believed to have shut down uranium enrichment facilities in Iran. This new virus is much more sophisticated though, it is like a collage of existing malware techniques molded into one. To combat this, many companies like Kaspersky, Norton, BItdefender , and others have developed a detection kit and “wiper”. But, it is unlikely that the regular user has been infected as the Flame appears to have specified targets [Iran]. read more...

FAQs about Flame the Virus {6}

by Ronny W
Technology advance rapidly, and so are hackers out there. They are developing large scale viruses too. Recently there is a virus called Flame that is loose in Iran and other Middle Eastern countries. Flame is aimed to steal sensitive data from infected PCs. “Kaspersky describes Flame as a backdoor and a Trojan with worm-like features. The initial point of entry for the virus is unknown — spearphishing or infected websites are possibilities — but after the initial infection, the virus can spread through USB sticks or local networks.” (Newman, 2012) Flame the virus can get information from input boxes and passwords hidden by asterisks. Flame can record audio from a connect mic or take screenshots of important applications. Flame “can also collect information about nearby discoverable Bluetooth devices. The virus then uploads all this information to command and control servers, of which there are about a dozen scattered around the world. ” (Newman, 2012) Flame’s code occupied more than 20MB of code, and only 500K code of Stuxnet is analyzed. So it will take years to fully understand 20MB of Flame code. The code doesn’t seem to be after money or bank accounts, but it is aiming at bigger infrastructure. There are speculation that it could be a nation-created virus. read more...

AJAX Delivering Malware {Comments Off on AJAX Delivering Malware}

by Mike Y
Security researchers found that malware was being separated into different chunks to get through firewalls and stay undetected by antivirus programs. The researchers  from Web filtering vendor M86 Security said “the attack was observed on a currently running server located in China, which is serving malware.” Because the malware is in chunks of code, antivirus software and firewalls have a hard time detecting signatures of malware. AJAX is used to “write generic attack pages which looks benign,” but when the pieces of code are assembled, and when the dynamic content is loaded is when it become malicious. This is when antivirus software can detect virus signatures, but is not foolproof. read more...

New Virus in Town {Comments Off on New Virus in Town}

by Peter C

According to the article from LA Times, the researchers have discovered a malware virus that has invaded 61 countries (Bowden). Viruses have always been a problem for the world because our technology is always getting more hi-tech. The virus that we speak of is a computer virus that can steal data from any computer in the internet world. It has already stolen some data from different countries but mainly from those that were once part of the Soviet Union. The name for this virus is called the Lurid Downloader because it jumps from domain to domain in order to avoid detection. Although we would like our computer to be free of viruses; however, viruses in the technology world cannot be avoid. read more...