Flame

Blame game: Cyber espionage

Blame game: Cyber espionage

Nation-states are extricating intellectual property from U.S. government entities and private corporations, reports David Cotriss.

Waking the sleeping giant: Critical infrastructure

Waking the sleeping giant: Critical infrastructure

By

For the last several years, security experts have been stressing the vulnerability of industrial control systems. Now, with attacks like Stuxnet proof of the risk, the big question is: How will industry respond?

The good, bad and ugly

The good, bad and ugly

While some instances of Stuxnet and Duqu found their way into seemingly unplanned locations, the majority of occurrences were localized to targeted systems.

Making sense of Middle East-targeted malware

Making sense of Middle East-targeted malware

Stuxnet kicked things off, and since then, there's been an explosion in sophisticated viruses targeting businesses and critical infrastructure in the Gulf region. But, prevention is still an option.

Obama, Romney avoid talking cyber security at debate

By

The third and final presidential debate was heavy on the kinetic and light on the cyber. And it shouldn't have surprised anybody.

After Flame and Gauss strike, MiniFlame takes aim

By

Already famous for their sophistication, Flame and Gauss malware have yielded a new develompent. Dubbed MiniFlame, the component is deployed after Flame and Gauss already are installed on targeted machines.

SC Congress NY: Anticipate threats for best defense

By

Organizations shouldn't wait until they are the targets of sophisticated attacks to take action, according to a panel discussion at SC Congress New York.

Debate: Flame, Stuxnet and other APTs are hype, but still be wary

Debate: Flame, Stuxnet and other APTs are hype, but you should still be extremely worried.

Flame-related malware detected in the wild

By

Researchers have discovered three new malware strains linked with the Flame virus, and noted an even higher number of victims than expected.

Microsoft pushes two patches and new cert requirement

By

Experts said the light patch load addresses issues that aren't considered high-risk, but the monthly update from Microsoft also includes a new requirement that encryption algorithms on RSA certificates meet a certain key length.

Light Patch Tuesday will include new encryption rule

By

Next week's monthly patch batch from Microsoft is not very burdensome, but it includes a new requirement that certificates must contain RSA key lengths of more than 1,024 bits.

Flame is lame? Not so much.

Flame is lame? Not so much.

Flame's cryptofunctionality silenced all the haters, says F-Secure's Mikko Hyppönen.

News briefs: Breaking security news from the Cybersecurity Act to Gauss

News briefs: Breaking security news from the Cybersecurity Act to Gauss

The Cybersecurity Act of 2012 was defeated in the Senate, FinFisher spyware analyzed, nation-state-created espionage malware Gauss, and other breaking security news

Link spotted between Wiper virus and Stuxnet, Duqu

By

The Wiper virus has left few clues for researchers to study, but there may be similarities between it and other malware targeting systems in the Middle East.

The hypocrisy of the zero-day exploit trade

By

In the high-priced market of exploit sales, developers resist government regulations -- but are more than happy when one wants to open its coffers to them.

Data-wiping Shamoon targeting Middle East energy sector

By

Shamoon, malware that overwrites files to the point of making computers unusable, has been described as a targeted, yet damaging threat.

Kaspersky releases Gauss detection, asks for decrypt help

By

Though Gauss's encrypted payload continues to perplex researchers, Kaspersky Lab has unveiled a free tool to detect the malware.

Gauss trojan targets Lebanese banks, likely U.S. creation

By

Gauss, which researchers have linked to Flame and Stuxnet, both believed to be built by the U.S. government, functions mainly as a banking trojan -- but it also contains a mystery encrypted payload.

Debate: The evasiveness of Flame may have been what prevented

The evasiveness of Flame may have been what prevented traditional AV technology from catching it sooner.

Video: The growing sophistication of threats

By

McAfee co-president, Michael DeCesare, stopped by the SC Magazine offices to discuss the advancements in the threat landscape.

Mahdi spy malware uncovered, but no Flame link yet

By

Security researchers said Tuesday they have come across a new strain of espionage malware that has successfully infected 800 different organizations this year in the Middle East to steal information and spy on communications.

Preparing for a post-Flame world

Preparing for a post-Flame world

By

The latest evidence of cyber espionage weaponry could be a harbinger of nation-state assaults to come.

Medicine man: Risk assessment

Medicine man: Risk assessment

By

In 1854, an English physician was one of the first to use an epidemiological method to ID disease risk. Ben Sapiro of the Dominion of General Insurance Co. wants his peers to do the same with security.

News briefs: Flame, Stuxnet, breach at LinkedIn and other security news

By

Flame, Stuxnet, breach at LinkedIn and other security news

The Flame virus is the "Threat of the Month"

The Flame virus is the "Threat of the Month"

Flame, aka Skywiper, is a sophisticated tool used to locate and steal data accessible from the infected computer. The malware uses multiple exploits to propagate and is highly configurable.

Flame virus: Too hot to handle?

Flame virus: Too hot to handle?

By

While the characteristics of the spy virus are important to note, the question is why it went undetected for so long.

A session at DefCon 2009 spotted the Flame virus, sort of

A session at DefCon 2009 spotted the Flame virus, sort of

The espionage toolkit known as Flame has sparked widespread awe over its capabilities. But at least some researchers already have exhibited how malware can disguise itself as a software update to infect computers.

AutoCAD worm steals blueprints in industrial theft

By

Blueprint drawings in Peru are the latest target of information-stealing malware, after researchers at ESET discovered the Medrea worm in circulation.

Report: Like Stuxnet, the U.S. also built Flame virus

Suspicions that the sophisticated espionage toolkit Flame was created by the same authors as Stuxnet are true, according to a published report.

Video: Defending mission-critical applications

By

While the security industry is on their toes, many companies still haven't addressed their information security. In this video interview, Dan Kaplan sits with Radware CEO, Roy Zisapel, to chat about defending mission-critical applications.

Sign up to our newsletters

POLL