Researchers Identify 'Most Sophisticated Cyber Weapon Yet'

Hundreds of computers located in the Middle East have been infected by a highly complex virus called "Flame," according to security researchers at Kaspersky Lab.

According to a blog post published by the company, the malware has been running rampant over the past two years, stealing personal data and spying on users' online activities. The virus, which was called Flame after researchers discovered this name in its source code, is a relative of the Stuxnet and Duqu worms.

"Flame shares many characteristics with notorious cyber weapons Duqu and Stuxnet: while its features are different, the geography and careful targeting of attacks coupled with the usage of specific software vulnerabilities seems to put it alongside those familiar 'super-weapons' currently deployed in the Middle East by unknown perpetrators," wrote
Kaspersky Lab's Alexander Gostev.

According to the security firm, Flame is actually an attack toolkit that hackers could use to pull off many different types of data thefts and privacy breaches. Kaspersky Lab also said that this malware is unique in that the programming language LUA was used to write some of the code -- a language usually reserved for video game development. 

Flame could be used for data theft, but Kaspersky Lab indicated that it's only been seen utilized for secretly monitoring infected users. Its actions include intercepting Skype calls, recording screen grabs and accessing cell phone data connected via Bluetooth.

The security firm started researching the virus after the United Nations' International Telecommunication Union asked for its assistance. At the time, Flame was considered to be an unknown worm.

Since the majority of infected systems are in Iran, many have speculated about the possible political nature of the malware, with many suggesting that the attack originated from Israel. Speaking on the possible connection to Flame, Israeli Vice Premier Moshe Yaalon neither confirmed or denied his country's involvement.

"Whoever sees the Iranian threat as a significant threat is likely to take various steps, including these, to hobble it," said Yaalon on Army Radio. "Israel is blessed with high technology, and we boast tools that open all sorts of opportunities for us."

The possibility of state-sponsored malware being unleashed got lots of attention with Duqu and Stuxnet, almost as a "new" phenomenon. However, Marcus Carey, security researcher at Rapid7, said he believes that there is nothing new with Flame. While Kaspersky Lab was quick to label it the "most sophisticated cyber weapon yet unleashed," he said this is an overreaction.

"None of the methods of this malware are particularly new," said Carey in an e-mailed comment. "I've seen an emphasis on LUA being something that makes this exploit kit something new, but the fact is that penetration testers have been using tools that heavily leverage the LUA programming language for the last couple of years."


About the Author

Chris Paoli is the site producer for and

comments powered by Disqus

Reader Comments:

Wed, May 30, 2012 wavettore USA

In the next World War it will be like fighting against a phantom where the invisible enemy is also one marked feature of every human being, Ego, personified in our days like never before in history by few people dictating their will from the top of one virtual Pyramid. The War manipulated by the Zionists will be geographically split on two fronts: Russia, China and Arab States on one side Israel, USA and England on the other. Russia will be the last target while the confrontation with China will follow the War in the Middle East. The Zionists Freemasons have already planned this War behind the back of all people which will be forced to fight for their own Countries in their obligation as citizens. Through one strategy of Terror and Deception the Zionists will continue to monitor and separate all people to face many weak and divided oppositions rather than one strong and united. They will need chaos and despair to impose their New World Order. No weapons or protests could counter their Plan relying on such Force and Deception. In this “carousel” orchestrated by the CIA on behalf of the Zionists, the greatest danger to Humankind is not the CIA or the Zionists but the lack of one evolutionary change needed for us to step away from that same Direction marked in all history and to become one race distinguished from the Animal kingdom. There is only one solution.

Tue, May 29, 2012 kafantaris

Only four countries had the technical know-how to develop the Flame virus: "Israel, the U.S., China and Russia." Since the virus was obviously intended for Iran, we can eliminate its friends China and Russia. This leaves only Israel and us. Having thoroughly demonized Iran, anything we do to it has become fair game. But there is nothing fair or right about taking another country's data. Certainly we would not want China or Russia taking our data and spreading it to 80 separate servers. As a leader of the world community aspiring for governance through universal fairness, we can no longer afford to follow the beaten path of expediency chosen by Israel. Doing so will not only deprive us of our moral authority, but will also squander our unique opportunity to fashion a more just and fair world.

Add Your Comment Now:

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Please type the letters/numbers you see above

Redmond Tech Watch

Sign up for our newsletter.

I agree to this site's Privacy Policy.