|
A Flame, Duqu Test-Drive
Dark Reading SAN JUAN, PUERTO RICO—Kaspersky Security Analyst Summit 2013—The big question haunting security researchers and enterprises in the wake of the revelation of Stuxnet and cybersepionage tools Flame and Duqu is whether the malware families can … |
 TweakTown |
Red October Espionage Network Rivals Flame
InformationWeek "The campaign, identified as 'Rocra' — short for 'Red October' — is currently still active, with data being sent to multiple command-and-control servers, through a configuration which rivals in complexity the infrastructure of the Flame malware … Kaspersky uncovers five-year cyber espionage network, makes the Flame … Red October malware discovered after years of stealing data in the wild 'Red October' malware spies on governments worldwide |
 Naked Security |
France Accuses US of Using Flame Malware to Hack President's Network
Threatpost (blog) The French government has accused the United States of using Flame malware to break into the computer networks inside France's presidential palace, the Elysee. Newsmagazine l'Express reported the intrusion occurred days before the presidential … France accuses US of Flame malware attack on government computers U.S. blamed for spying on French government with Flame malware Report: US Launched Flame-Based Malware Attack Against France |
The French news magazine L’Express has reported that in May computers in the offices of France’s then-president Nicolas Sarkozy were attacked by Flame, the malware jointly developed by the US and Israel to collect information on the Iranian nuclear program, and that staff at the Elysee Palace covered up the attack. “Hackers have not only managed to get to the heart of French political power,” L’Express reported, “but they were able to search the computers of close advisers of Nicolas Sarkozy.”
While Sarkozy was not directly targeted—it is reported by L’Express that he did not have a PC—the report claims that “secret notes were recovered from hard drives, and also strategic plans.” The victims of the attack were allegedly targeted through Facebook and then “spearphished” by the attackers, who sent a link to a website that replicated the Elysee’s intranet site—a site that captured their usernames and passwords, and infected their computers with malware. Sources told L’Express that the malware’s signature matched that of the Flame “worm.”
Once inside the intranet, the worm was able to work its way across the network, eventually infecting the computers of a number of Sarkozy’s closest advisers including his Secretary-General Xavier Musca. The attack was ultimately detected by the French government’s computer security agency, the Agence nationale de la sécurité des systèmes d’information (Anssi); the Elysee’s network was down for several days as an Anssi team cleared the worm from infected systems.
Read 1 remaining paragraphs | Comments
