The latest malware threat that is going around the world is the malware Flame. Security Affairs has published an article that explains the functions of the Flame malware. Flame is not the first malware that has hit Iran. Each time that Iran gets targeted by a malware it gets published on the internet and it then gets wide media attention. We can tell this by looking at the history of malware attacks on Iran like the Stuxnet malware, Duqu malware and Viper.
This news gets blown up badly that the focus on other threats disappears. In the same period that the Flame malware arrived the following news got published that the Chinese regime has backdoor acces to each U.S. military chip that has been manufactured in China. These chips are used in systems for weapons, nuclear power plants and public transports.
Cyber weapons are being manufactured and sold
We all read about the use of cyber weapons to cripple or demolish specific groups or countries. What we don’t get from the media is who gave the order to create such an cyber weapon, who coded and manufactured the cyber weapon and who is in control of the cyber weapon? There is a big growing market in the deal of cyber weapons.
Big guys: The cyber weapon arms dealers
Big impact viruses are created by specific request. These kinds of malware need production houses and big investors to have an impact. Stuxnet, Viper, Duqu, Flame are great examples of how these cyber arm dealers are active.
Stuxnet targeted Siemens industrial software and equipment. Stuxnet was the first malware to include a programmable logic controller rootkit. This means that the creators of Stuxnet had done their research on Iran and Siemens equipment or that someone had provided them the information.
Then we had the Duqu virus – the brother of Stuxnet. Duqu is an edited malware of the Stuxnet version and Duqu targeted Microsoft Windows systems using zero day vulnerability. Duqu was designed to espionage on industrial control systems.
The Viper virus managed to take some key installations offline for a short period, including the Kharg Island terminal control systems, which deals with the bulk of Iran’s oil exports through the Persian Gulf.
Flame; highly sophisticated piece of malware has been newly found infecting systems in Iran and elsewhere and is believed to be part of a well-coordinated, ongoing, state-run cyberespionage operation.