Results 1 to 5 of 5
  1. #1
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default Most complex malware ever found.

    Flame, aka Flamer or sKyWIper

    "Flame, aka Flamer or sKyWIper, has been dubbed more complex than Duqu and Stuxnet. In fact, it has been described as "the most sophisticated malware we encountered during our practice; arguably, it is the most complex malware ever found."

    https://www.securelist.com/en/blog/2...swers#page_top

    And

    Security Garden

    Joe

  2. #2
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    More interesting developments that I found.

    Espionage software is nothing new. For years, criminals have had access to malware that can take over computers, log keystrokes and mouse movements, record screenshots, turn on the camera and microphone without turning on the red lights and so on. You can buy such tools from the criminal underground for a couple hundred dollars, including technical support.

    What is new about Flame is the sheer scale of the thing, its highly modular structure, its comprehensive espionage capabilities — and the fact that it remained undetected for so long.

    Now that they’ve trawled back through their logs, Kaspersky Lab said its first detection of Flame was August 2010 on a computer in Lebanon. It has now found Flame on customers’ computers in Iran, Israel, Palestine, Sudan, Syria, Saudi Arabia and Egypt.

    Meanwhile the Laboratory of Cryptography and System Security (CrySyS) at the Budapest University of Technology and Economics has published an in-depth analysis on malware it dubbed sKyWIper, and which it had detected well beyond the Middle East.

    “It is obvious from the list of its files that sKyWIper must be identical to [Flame],” it writes. “sKyWIper may have been active for as long as five to eight years, or even more.”
    Quotes from Computer World

    We understand why Obama is failing to act against Iran, but Israel? We just might have the answer to that question . . . . . and it is the baddest computer virus in the Cosmos

    It is clear to this blogger that folks within the Bush very secret service, helped to develop a virus that is 20 times more potent than the famous Stuxnet virus that shut down much of Iran's nuclear project a couple of years ago. It just might prove to be Obama's savior. Time will tell. Meanwhile, let's see how long it takes for Obama to (a) take credit for the virus and (b) to expose those who helped in its development, you know, like he did with the Yemenite double agent, Seal Team Six and the Pakistani doctor who helped locate Osama bin Laden.

    For over two years now, hundreds of capable programmers have been taking Stuxnet, and now Duqu, apart and openly discussing the results. While Stuxnet was probably created as a highly classified government project (Israel and the U.S., in a joint effort, are the most likely suspects), no one has taken credit for it.
    Deep In The Heart Of Stuxnet

    They believe the Flame has been active for 5-8 years though just recently detected. Makes you wonder what else is out there that hasn't been detected yet.
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  3. The Following User Says Thank You to DonnaB For This Useful Post:


  4. #3
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Thanks for the follow up on that! I was unaware of any of it, guess that was the idea....

    Joe

  5. #4
    Member Spyware Fighter DonnaB's Avatar
    Join Date
    Apr 2009
    Location
    Illiana, Ill. USA
    Posts
    3,521
    Points
    563

    Default

    About 900 million Windows computers get their updates from Microsoft Update. In addition to the DNS root servers, this update system has always been considered one of the weak points of the net. Antivirus people have nightmares about a variant of malware spoofing the update mechanism and replicating via it.

    Turns out, it looks like this has now been done. And not by just any malware, but by Flame.

    Microsoft Update and The Nightmare Scenario
    If you think you might be infected with malware or have recently cleansed your computer of malware without the help of an expert, please read and follow the instructions in How to Start Removing Viruses and Spyware from your Computer. This can alleviate time consumed in trouble shooting your current computer problems.

    If your problem is solved, here's how to say thanks!

    Very proud parent of a U.S. Navy "CB"



    "People may forget what you say,
    People may forget what you did,
    but People will never forget how you made them feel!"

  6. #5
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Why Windows is a Security Nightmare

    From 2004


    Security in all mainstream operating systems is non-existent; however, things are especially bad for Windows. Windows happens to be the favorite target of worm and virus writers. Conventional wisdom suggests that the huge installed base of Windows helps spread the worms and viruses, and also makes it a highly attractive target for worm/virus writers. The installed base of Windows certainly has an undeniable effect on the prevalence of malware on Windows, but this is not all there is to it.

    Worms and viruses are so stunningly effective on Windows only because Windows provides some atrocious functionality which makes it easy for worms to strike. It might seem counterintuitive but Windows Registry, and a misdesigned Windows Update are the primary culprits that create a hospitable environment for worms and other malware.

    A typical Windows system follows a simple lifecycle: it starts out with a clean Windows installation, which gradually deteriorates as programs are installed, and uninstalled. Eventually, the Windows registry accumulates so much crud that the user is forced to do a clean install. When a user does a clean install that user's system loses all the previously applied security updates, and becomes a sitting duck for worms and other malware.

    The whole idea of Windows Update is a joke. Using an unreliable and insecure network as the primary means of distributing security updates is simply idiotic. This is like asking people to walk through a minefield to get to a shelter.
    If Microsoft is serious about Windows security it needs to fix Windows Update, and get rid of the Registry for good.
    Why Windows is a Security Nightmare



    In addition:

    Why is that percentage so low? Kanerva said many college students who train in computer science are attracted to fields other than security, such as software development or computer engineering, which are considered more appealing and can sometimes offer six-figure starting salaries. The median salary for a graduate earning a degree in security was $55,000 in 2009, compared with $75,000 for computer engineering.

    http://www.washingtonpost.com/busine...1yU_story.html
    Last edited by zep516; 06-04-2012 at 11:26 PM.