Flame Virus in Iran
Gauss Flame's cousin
Gauss, the Flame malware's 'cousin', targets banks in Lebanon
“Gauss is a nation state sponsored banking Trojan which carries a warhead of unknown designation.
When news of the Flame/SkyWiper malware hit the headlines last month, the world went into a frenzy. Flame was immediately hailed as the world’s most sophisticated malware. While security researchers will surely be talking about Flame for years to come, FireEye has since made another discovery regarding Flame’s command and control (CNC) behavior: it appears that the Flamer/sKyWIper malware’s callback has recently changed.
Malware Intelligence Lab:More Flame/sKyWIper CNC Behavior Uncovered
Flame authors order infected computers to remove all traces of the malware
The creators of the Flame cyber-espionage threat ordered infected computers still under their control to download and execute a component designed to remove all traces of the malware and prevent forensic analysis, security researchers from Symantec said on Wednesday. Flame has a built-in feature called SUICIDE that can be used to uninstall the malware from infected computers.
Microsoft patch
The Flame espionage malware targeting Iranian computers contains code that can completely hijack the Windows update mechanism that Microsoft uses to distribute security patches to hundreds of millions of its users, security researchers said Monday. Flame components known as "Gadget" and "Munch" allow Flame operators to mount a man-in-the-middle attack against computers connected to a local network that hosts at least one machine already infected by the malware, Kaspersky Lab expert Alexander Gostev wrote in a blog post published Monday . By exploiting weaknesses in Microsoft's Terminal Server product—and poor key-management decisions made by Microsoft engineers—the Flame architects were able produce cryptographic seals falsely certifying that their malicious wares had been produced by Microsoft .
Flame malware hijacks Windows Update to spread from PC to PC
United Nations views Flame as cybersecurity opportunity | Security & Privacy
The United Nations has seized on the appearance of the Flame worm , which targeted computers in the Middle East, to argue that it should have more authority to deal with cybersecurity threats on the Internet. Last week, the United Nations' International Telecommunication Union circulated a statement about Flame saying the malware "reinforces the need for a coordinated response" that could come from "building a global coalition."A Massive Web of Fake Identities and Websites Controlled Flame Malware | Threat Level
The attackers behind the complex Flame cyberespionage toolkit, believed to be a state-sponsored operation, used an extensive list of fake identities to register at least 86 domains, which they used as part of their command-and-control center, according to researchers at Russia-based antivirus firm Kaspersky Lab.
Flame malware's structure among most complex ever seen, says Kaspersky Lab
Network World - Kaspersky Lab Monday shared more details about the sophisticated cyber-espionage Flame malware widely believed to be the work of a nation-state, though the security firm isn't venturing yet to say what country that might be.
kaspersky's role in AV war
Quick guide to Flame malware attack - IT Analysis from V3.co.uk
The security industry has been alight with the news of the Flame malware attack on Iranian IT systems , which represents a significant advancement on the Stuxnet and Duqu attacks from the last two years.
US behind the cyberattack?
Flame-bait Questions
There are plenty of questions from customers, and also from members of the press.
The Flame Virus: Your FAQs Answered
A frightening computer virus called Flame is on the loose in Iran and other parts of the Middle East, infecting PCs and stealing sensitive data.Iran 'finds fix' for sophisticated Flame malware
29 May 2012 Last updated at 11:25 ET The sophistication of Flame helped it avoid detection by security software Iran says it has developed tools that can defend against the sophisticated cyber attack tool known as Flame.The Flame Virus: Spyware on an Unprecedented Scale
Security researchers recently discovered one of the most complex instances of computer malware on record. Flame, which also goes by the names SkyWiper and Viper, has infected hundreds of computers across the Middle East and Europe. What does it do? Where did it come from?From all indications, it would appear that attackers are continuing to attack and malware authors are carrying on writing malware.
What's the Meaning of This: Flame Malware
The number of locations of flame infections detected by Kaspersky Labs on their customers' machines. Picture: Kaspersky Labs Source: Supplied