Security firm Kaspersky virus infiltrated government – update




The makers have broken the Duqu virus Kaspersky and have the network that now infected with a new virus. It says the company. The creators of the software would – possibly Israel or the US – talks between the West and Iran have bugged.

Kaspersky came infection earlier this year on the track, the company said in a report . The malware would be discovered only a few months after the initial infection. According to Kaspersky, it is a very sophisticated attack, in which at least one but possibly even three zero-days are used. These are vulnerabilities for which no patch is available yet.

Kaspersky – which claims that the company’s customers are not at risk, already know the company who claim not to support – states that probably the same batch as those of the Duqu virus was behind the attack. The new virus has therefore been named Duqu 2.0. Also security Crysys that discovered Duqu 1.0, sees many similarities, including in the way of programming and compiling.

“The software was virtually invisible and very difficult to detect,” said Eugene Kaspersky director of the company. “No traces in the registry, only a small program in memory.” According to Kaspersky did the software itself as an update program to spread in the network.

According to Kaspersky the attackers were interested in examining the security company. It is unclear whether the attackers were able to capture sensitive data, but given them several months have been in the network of Kaspersky, it is quite probable.

The media pointed to Israel as responsible for the attack, but Kaspersky would not confirm that. Israel is often designated as the person responsible for the original Duqu virus. The country has never acknowledged it. Some have also pointed to the United States; Duqu namely exhibits strong similarities with the Stuxnet virus, which targeted Iranian nuclear facilities. The United States are seen as responsible for that virus.

Kaspersky has a small portion of its customers found infections of malware. Most of the affected customers were located outside Europe. Because it is a virus that was not yet known, it has not been previously detected. Among other hotels in the West with Iran diplomatic negotiations would have taken would have been affected by the virus. In addition, the attackers would have had access to the entire IT infrastructure. Israel was a fierce opponent of those conversations.

The attackers were using the virus may also have been spying on the seventieth liberation of Auschwitz-Birkenau. Why Israel or the United States that event would have to spy on is unclear.

Update, 16:35: This article reported that 270,000 infections have been observed. However, the number of customers that Kaspersky, not the number of infections. The article has been adjusted accordingly.


In: Technology & Gadgets Asked By: [15576 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »