‘Flame’, the world’s ‘most sophisticated cyber weapon’, discovered

Flame virus keyboard burning

Russia-based cybersecurity firm Kapersky Lab has discovered the world’s largest, most complex, and potentially most dangerous “cyber weapons” ever found. Known as “Flame,” the malware has been detected in machines across the Middle East, with the highest concentration of Flame infections found in Iranian computers, leading experts to believe that the malware is government-created.

At 20 megabytes in size, and with many individual parts, Flame is 20 times larger than either Stuxnet or DuQu, the two piece of malware previously considered the most dangerous.

According to Alexander Gostev, Kapersky’s head of Global Research and Analysis, Flame first came to Kapersky Lab’s attention after the International Telecommunication Union (ITU), a part of the United Nations, requested that Kapersky look into a an “an unknown piece of malware which was deleting sensitive information across the Middle East.” Specifically, Flame, which earlier media reports on the mysterious malware refer to it as either “Wiper” or “Viper,” was found on computers of the Iranian Oil Ministry and the Iranian National Oil Compuany.

What Kapersky’s cybersecurity experts uncovered was “what might be the most sophisticated cyber weapon yet unleashed,” writes Gostev, on the Kapersky blog SecureList. Flame “is a backdoor, a Trojan, and it has worm-like features, allowing it to replicate in a local network and on removable media if it is commanded so by its master,” writes Gostev. Flame allows its operators vast spying capabilities, including the ability to take screenshots, take control of the keyboard, and even record audio over an infected computer’s microphone.

Like Stuxnet and DuQu, the creator of Flame remains a mystery. Based on certain details, however, Kapersky has narrowed down the choice of candidates to one category: nation states.

“Currently there are three known classes of players who develop malware and spyware: hacktivists, cybercriminals and nation states,” writes Gostev. “Flame is not designed to steal money from bank accounts. It is also different from rather simple hack tools and malware used by the hacktivists. So by excluding cybercriminals and hacktivists, we come to conclusion that it most likely belongs to the third group. In addition, the geography of the targets (certain states are in the Middle East) and also the complexity of the threat leaves no doubt about it being a nation state that sponsored the research that went into it.”

Flame-map

At the moment, a Western government (like the United States), or Israel, seem the most likely creators of Flame, given the fact that Iran — considered by some as one of the greatest threats to Israel — is the most-targeted country. Other areas that have Flame-infected computers include the Palestinian territories in Israel, Sudan, Syria, Lebanon, Saudi Arabia, Egypt, Austria, Hungry, Russia, United Arab Emirates, and Hong Kong.

As AFP reports, Israel’s Strategic Affairs Minister Moshe Yaalon issued a statement about Flame, which seems to implicate the Israeli government’s involvement with its development and/or distribution.

“For anyone who sees the Iranian threat as significant, it is reasonable that he would take different steps, including these, in order to hobble it,” he said in an interview with the Israeli army radio. “Israel is blessed with being a country which is technologically rich, and these tools open up all sorts of possibilities for us.”

The exact date of Flame’s release is currently unknown. Gostev says the files that could reveal this information have been updated repeatedly with fake dates, but that they know it has been “out in the wild” since at least February or March of 2010. Wired reports that at least one part of the massive Flame malware appeared on computers in Europe all the way back in December of 2007, and in Dubai at the end of April, 2008.

A number of antivirus firms, including Kapersky, BitDefender, and Semantec, are currently analyzing Flame. BitDefender has released tools for removing Flame from infected computers, available here. And Iran’s Computer Emergency Response Team has issued a statement, saying that it has created a detector to find the so-called “Flamer” malware on infected machines, as well as a way to remove the invasive bit of code.

To learn more about the Flame spyware, check out Kapersky’s Q&A here.

Lead image via Ilja Mašík/Shutterstock

Computing

HP drops killer deals on laptops with up to $1,300 off for Memorial Day Weekend

HP is currently dropping prices on Spectre x360, Envy, Pavilion, and Omen laptops during its Memorial Day event. So if you're in dire need of a new laptop, the latest holiday savings may be exactly what you're looking for.
Computing

The Dell XPS 13 headlines the best laptop deals for May 2019

Whether you need a new laptop for school or work or you're just doing some post-holiday shopping, we have you covered: These are the best laptop deals going right now, from discounted MacBooks to on-the-go gaming PCs.
Computing

Keep your kids safe online with these great parental control tools

The internet can be a dangerous place, especially for your loved ones. Check out our selection of the best free parental control software for Windows and MacOS, so you can monitor your child and block unsavory sites.
Computing

These external drives have speed, durability, and storage space to spare

Whether you want an external storage drive that is fast, portable, or comes with a ton of storage, these are the best external hard drives available today. They all come with great features and competitive pricing.
Computing

The 2019 ThinkPad lineup is robust. Here's how to pick the right one for you

Be it the X series, the T series, E series, it can be tough to find the best Lenovo laptop that is right for you. To help, we'll break down all the options available to make your choice a more informed one.
Computing

Here’s how to watch AMD reveal its new Ryzen chips at Computex

AMD will be holding a pre-Computex keynote on May 27 to announce its new line of 3rd-generation Ryzen processors and accompanying Radeon Navi graphics cards. Here's how to watch the keynote live wherever you are in the world.
Computing

Microsoft might finally embrace USB-C on next-gen Surface Pro 7

USB-C could finally come to Microsoft's Surface Pro tablet. According to a Microsoft patent filing, the port was shown in an illustration, suggesting that the company is working to support this feature in the future.
Computing

Should you buy a MacBook Pro or a Razer Blade Stealth? We'll help you decide

Laptop head to heads are a great way to see which one might be the right one for you. Our latest sees the Razer Blade Stealth (2019) vs. MacBook Pro in a fight to see which one deserves to be your next laptop.
Computing

AMD's latest Navi graphics cards are incoming. Here's what to expect

AMD's Navi graphics cards could be available as soon as July 2019 — as long as it's not delayed by stock problems. Billed as a successor to Polaris, Navi promises to deliver better performance to consoles like Sony's PlayStation 5.
Computing

Ryzen 3000 chips will pack a punch, and could launch as early as July

AMD's upcoming Ryzen 3000 generation of CPUs could be the most powerful processors we've ever seen, with higher core counts, greater clock speeds, and competitive pricing. Here's what we know so far.
Mobile

Want to watch Netflix in bed or browse the web? We have a tablet for everyone

There’s so much choice when shopping for a new tablet that it can be hard to pick the right one. From iPads to Android, these are our picks for the best tablets you can buy right now whatever your budget.
Deals

The best Amazon Prime Day 2019 deals: Everything you need to know

Amazon Prime Day 2019 is still a few months off, but it's never too early to start preparing. We've been taking a look at the best discounts from previous Prime Days to give you our predictions of what to expect this year.
Deals

Walmart Memorial Day sale: 4K TVs, laptops, and Apple iPads get price cuts

The Walmart Memorial Day sale has begun. With some pretty nice savings on Apple iPads, Samsung and Vizio 4K TVs, laptops, and Google Home devices, now is a great time to snag some electronics for cheap.
Computing

Here’s how to watch the Nvidia Computex 2019 press conference

Here’s everything you need to know about Nvidia’s upcoming press conference at Computex 2019 in Taipei, Taiwan; including what to expect during the press conference and how and when to watch it.