Difference between revisions of "31 May 2012"

From Organic Design wiki
m
(US+Israel developed Flame, officials say)
 
Line 9: Line 9:
  
 
'''Updates:'''
 
'''Updates:'''
 +
*[http://www.washingtonpost.com/world/national-security/us-israel-developed-computer-virus-to-slow-iranian-nuclear-efforts-officials-say/2012/06/19/gJQA6xBPoV_story.html US+Israel developed Flame, officials say]
 
*[http://arstechnica.com/security/2012/06/flame-crypto-breakthrough/ Crypto breakthrough shows Flame was designed by world-class scientists]
 
*[http://arstechnica.com/security/2012/06/flame-crypto-breakthrough/ Crypto breakthrough shows Flame was designed by world-class scientists]
 
:''- by Dan Goodin - June 7 2012''
 
:''- by Dan Goodin - June 7 2012''

Latest revision as of 03:27, 20 June 2012

Warning.svg This is a blog item that needs to be converted to the new Bliki format


Iran invites malware into their nuclear facilities

Flame-Windows.jpg

After Obama and Israel released the Stuxnet worm to attack Irans nuclear facilities in 2010, another virus being called Flame has now been discovered which does even more damage.

Infiltration of the computer systems in a tightly secured nuclear facility would normally be a practically impossible task, but the US and Israel had an amazing stroke of good luck; they discovered that Iran was using Windows operating systems in its nuclear facilities which are renowned for being the most insecure and vulnerable operating systems currently available!

So once this valuable piece of information was known it was a simple matter of applying a few of the well known Windows exploits, such as putting some malicious code into removable media's autorun.inf files or gaining complete control of a machine via flaws in the graphical user interface programming.

It seems almost like Iran was inviting such an attack - why on earth would such insecure software be used for something so security sensitive? why would they carry on using Windows after being infected by Stuxnet? why are they even supporting US companies with their IT budget? It seems to be about as ridiculous as the death star having a self-destruct button in the middle just waiting for a Jedi to fly in and press it!

Updates:

- by Dan Goodin - June 7 2012
- F-Secure's Chief Research Officer: A/V outfits were out of their league