PTS
Pág 1 de 9 123 ... ÚltÚlt
Resultados 1 a 20 de 168

Tópico: Flame e outras cenas perigosas

  1. #1
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default Flame e outras cenas perigosas

    Boas!

    Spy malware infecting Iranian networks is engineering marvel to behold
    Researchers are still wrapping their brains around the mind-blowing "Flame."
    ...
    The malware, dubbed "Flame" after one of the dozens of modules available for it, immediately evoked memories of Stuxnet, another piece of advanced malware that disabled uranium centrifuges in Iranian nuclear plants. As sophisticated as Stuxnet and a related piece of espionage software known as Duqu are, the latest piece of malware is probably orders of magnitude more sophisticated. When fully installed, its size is a whopping 20MB, and it also uses SQLite databases and dynamically generated code that uses the Lua programming language. Such characteristics suggest the malware, which Kaspersky estimates has been found on about 1,000 computer systems so far, could only have been written by a large team of highly skilled software engineers.

    "The really interesting thing here is it seems to be another politically motivated, covert operation," Symantec researcher Liam O Murchu told Ars. "We don't normally see the highest infections in Iran, but we do in this case. Based on that, we're looking at another politically motivated attack, at stealing information, possibly written by a government or government agency."
    ...
    +
    http://www.securelist.com/en/blog?weblogid=208193522
    Última edição de ímpar : 30-08-2012 às 12:16
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  2. #2
    AquaPC Enthusiast Avatar de portwolf
    Data de Registo
    Oct 2004
    Local
    Sacavém
    Posts
    561

    Default

    A espionagem já à muito dança no digital warfare, já o Stuxnet foi o que foi, o Flame é a evolução natural.


    ლ(◕‿‿◕ლ) Feedback AquaPC

  3. #3

  4. #4
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    "Flame" malware was signed by rogue Microsoft certificate
    Emergency Windows update nukes credentials minted by Terminal Services bug.
    Microsoft released an emergency Windows update on Sunday after revealing that one of its trusted digital signatures was being abused to certify the validity of the Flame malware that has infected computers in Iran and other Middle Eastern Countries.
    Iran-targeting Flame malware used huge network to steal blueprints
    Over 80 fake domains were registered with fake identities.
    Attackers behind the Flame espionage malware that targeted computers in Iran used more than 80 different domain names to siphon computer-generated designs, PDF files, and e-mail from its victims, according to a new analysis from researchers who helped discover the threat.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  5. #5
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Flame malware hijacks Windows Update to spread from PC to PC
    It's hard to patch a machine when the update mechanism is compromised.

    The Flame espionage malware targeting Iranian computers contains code that can completely hijack the Windows update mechanism that Microsoft uses to distribute security patches to hundreds of millions of its users, security researchers said Monday.
    Flame malware wielded rare "collision" crypto attack against Microsoft
    Such real-world exploits are almost unheard of, underscoring Flame's ingenuity.
    Attackers behind espionage software that infected Iranian computers targeted hard-to-exploit weaknesses in a cryptographic algorithm, a feat that allowed them to counterfeit a Microsoft digital credential, a member of the company's security team said.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  6. #6
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Flame's "god mode cheat code" wielded to hijack Windows 7, Server 2008 (Updated)
    Code "better than" any zero-day exploit took complete control of systems.
    The Flame malware that was likely spawned by a nation-state to spy on Iran employed a highly sophisticated cryptography attack that allowed it to pierce defenses Microsoft added to later versions of its Windows operating system, new research shows.
    Flame lights its own self-destruct fuse
    Amid the exposure of Flame, its authors appear to be going to ground, using what control they have of the malware to force it to self-destruct and disappear (almost) without a trace.
    Microsoft contains Flame with Windows Update revamp
    Following a groundbreaking cryptographic attack that hijacked the platform Microsoft uses to deliver updates to millions of large customers, the company has issued changes designed to prevent similar exploits from working again.
    Changes are designed to prevent hijacking of the system used to deliver updates.
    Última edição de ímpar : 12-06-2012 às 12:26
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  7. #7
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Flame's crypto attack may have needed $200,000 worth of compute power
    The collision attack used to spread Flame relied on millisecond time windows.
    ...
    The cryptographic attack that Flame engineers used to hijack Microsoft's Windows Update process was so computationally demanding, it would have required the equivalent of $200,000 worth of computing time from Amazon's EC2 Web service for most people to carry it out.
    ...
    Discovery of new "zero-day" exploit links developers of Stuxnet, Flame
    Windows exploit code in Flame also used in Stuxnet.
    ...
    Security researchers say they've found a conclusive link between the Flame espionage malware and Stuxnet, the powerful cyberweapon that US and Israeli officials recently confirmed they designed to sabotage Iran's nuclear program.
    ...
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  8. #8
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Microsoft overhauls certificate management in response to Flame PKI hack
    A new Windows auto-update will flag certs that are “no longer trustworthy.”
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  9. #9
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Confirmed: Flame created by US and Israel to slow Iranian nuke program
    Flame was developed by the NSA, CIA, and Israeli military, a new report says.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  10. #10
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    United States Accused of Using Flame to try to Cripple Iran's Economy
    Iran accuses malware of wiping systems at oil export centers, creating financial damages

    It's pretty obvious at this point that the U.S. selectively targeted Iran's nuclear weapons development efforts with pieces of malware. The question, amid intense politicization and scrutiny, is exactly what role Presidents Barack Obama and George W. Bush played in authorizing the attacks.
    ...
    If Symantec is right, it lends serious weight to the Iranian accusations.

    And in many ways it lends far more serious accusation to the notion that the U.S. has effectively "declared war" on Iran. After all, Stuxnet was targeting a select weapon -- nuclear missiles -- whose own real purpose was deadly offense. By contrast, the U.S. appears to have used Flame to attack the life-blood of the Iranian economy, its oil industry. That's a far more egregious move.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  11. #11
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Move over, Flame: New Messiah-themed malware targets Iran, Israel
    New espionage malware has been found targeting systems in the Middle East.
    ...
    Researchers have discovered another piece of espionage malware targeting sensitive organizations in the Middle East, this time siphoning e-mails, passwords, computer files, and nearby conversations from more than 800 PCs operated by critical infrastructure companies, financial institutions, and government agencies.
    ...
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  12. #12
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Manufacturer declares death of bugs Stuxnet used to sabotage Iran nukes
    Siemens has patched bugs in software used to control critical factory equipment.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  13. #13
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Iran Nuclear Energy Facility Hit With Malware That Plays AC/DC

    Malware that plays AC/DC at full volume in the middle of the night? Oh c'mon, that is hilarious! Those guys just don't have a sense of humor. Thanks to satsunada for the link.

    According to the email our cyber experts sent to our teams, they believe a hacker tool Metasploit was used. The hackers had access to our VPN. The automation network and Siemens hardware were attacked and shut down. I only know very little about these cyber issues as I am scientist not a computer expert. There was also some music playing randomly on several of the workstations during the middle of the night with the volume maxed out. I believe it was playing 'Thunderstruck' by AC/DC.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  14. #14
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Nation-sponsored malware with Stuxnet ties has mystery warhead
    Adding to the intrigue, Gauss trojan also targets Middle East banks and PayPal.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  15. #15
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    World-class cryptos wanted: Researchers seek help decoding "encrypted warhead"
    Researchers have renewed their call for help in cracking an "encrypted warhead" they believe was unleashed by a powerful nation-state and may be poised to search and destroy a high-profile target.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  16. #16
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Oil Exporters Attacked by Malware Similar to That Used to Attack Iran
    Using a malware package named "Flame" with tools with names like "Wiper", U.S. and Israeli intelligence teams are suspected of a concerted campaign designed to cripple Iran's oil industry, a key supplier of Chinese demand and lifeblood of the Middle Eastern giant's economy.

    But now the U.S. energy sector finds itself under attack by a somewhat similar piece of malware dubbed Shamoon or Disttrack by researchers at Symantec Corp. (SYMC) and Intel Corp. (INTC) subsidiary McAfee.
    Mystery malware wreaks havoc on energy sector computers
    Malware researchers have uncovered an attack targeting an organization in the energy industry that attempts to wreak havoc by permanently wiping data from an infected computer's hard drive and rendering the machine unusable.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  17. #17
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    World's largest oil producer falls victim to 30K workstation attack
    Saudi Aramco comes clean with some details, resumes network operations today.

    It's nearly a plot line from the movies: World's largest oil producer gets hit by a cyber-attack that threatens to wipe away all data from its internal computers. But largely, this is the situation Saudi Aramco described today.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  18. #18
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    The perfect crime: Is Wiper malware connected to Stuxnet, Duqu?
    State-sponsored clues found in data-destroying malware, but jury is still out.
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  19. #19
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!
    Huge natural gas producer severs Website, email after malware attack
    Attack comes amid malware campaign directed at energy companies.

    One of the world's biggest producers of liquefied natural gas has been hit by a malware attack that has taken down its website and e-mail servers. This is the second documented computer attack to hit a large energy company this month.

    Officials with Qatar-based RasGas first identified an "unknown virus" on Monday and took their RasGas.com website and e-mail servers offline in response, Bloomberg News and other news agencies reported on Thursday morning, citing company representatives.
    ...
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

  20. #20
    2n-1 Avatar de ímpar
    Data de Registo
    Nov 2003
    Local
    No Estado A Que Chegámos
    Posts
    15,331

    Default

    Boas!

    Iran and North Korea sign cyber treaty
    Co-operating against US malware
    Lá em cima há planícies sem fim; Há estrelas que parecem correr; Há o Sol e há dia a nascer;
    E nós aqui sem parar numa Terra a girar…


    Avaliação Compras/Vendas

Bookmarks

Bookmarks

Regras para postar

  • Não pode criar novas threads
  • Não pode responder a tópicos
  • Não pode colocar attachments
  • Não pode editar os seus posts
  •