The Freeland File
Global Market Data
Tales from the Trail
Lucy P. Marcus
David Cay Johnston
The Great Debate
Jack & Suzy Welch
Macro & Markets
Lipper Awards 2012
Personal Finance Video
Foie gras farmers force-feed for fuel
French farmers who force-feed their ducks to produce foie gras for the luxury food market, are turning their attention to alternative fuels, using excess duck fat to run deisel vehicles. Video
Samsung Galaxy S3 gets head start on rival iPhone
Lundbeck says Alzheimer's drug effective in trial
Opera would cost Facebook over $1 billion
Dewey files for Chapter 11 in record law firm collapse
Powerful "Flame" cyber weapon found in Iran
28 May 2012
UK has changed for worse under Queen Elizabeth: poll
28 May 2012
Facebook shares plumb new depths, valuation questioned
Fukushima radiation seen in tuna off California
28 May 2012
Romney tells vets dangerous world demands powerful military
Iran has enough uranium for five bombs: expert
Protests planned after minister calls for gays to be fenced in
A look at the UK’s most beautiful face
Thu, May 10 2012
Cruise ship crunch
Sat, May 26 2012
One stray dog's incredible journey with Chinese cyclists
Sun, May 27 2012
UN agency plans major warning on Flame virus risk
Iran, big powers agree to hold more nuclear talks in June
Thu, May 24 2012
WRAPUP 5-Iran, big powers agree to meet again over nuclear dispute
Thu, May 24 2012
Powers, Iran discuss detail of possible nuclear deal
Wed, May 23 2012
IAEA chief says nears deal with Iran ahead of 6-power talks
Tue, May 22 2012
WRAPUP 4-IAEA chief says nears deal with Iran ahead of 6-power talks
Tue, May 22 2012
Analysis & Opinion
Saudis wouldn’t gain much from a union with Bahrain
United Nations »
A computer engineer checks equipment at an internet service provider in Tehran February 15, 2011.
Credit: Reuters/Caren Firouz
By Jim Finkle
Tue May 29, 2012 5:21pm EDT
BOSTON (Reuters) - A United Nations agency charged with helping member nations secure their national infrastructures plans to issue a sharp warning about the risk of the Flame computer virus that was recently discovered in Iran and other parts of the Middle East.
"This is the most serious (cyber) warning we have ever put out," said Marco Obiso, cyber security coordinator for the U.N.'s Geneva-based International Telecommunications Union.
The confidential warning will tell member nations that the Flame virus is a dangerous espionage tool that could potentially be used to attack critical infrastructure, he told Reuters in an interview on Tuesday.
"They should be on alert," he said, adding that he believed Flame was likely built on behalf of a nation state.
The warning is the latest signal that a new era of cyber warfare has begun following the 2010 Stuxnet virus attack that targeted Iran's nuclear program. The United States explicitly stated for the first time last year that it reserved the right to retaliate with force against a cyber attack.
Evidence suggests that the Flame virus may have been built on behalf of the same nation or nations that commissioned the Stuxnet worm that attacked Iran's nuclear program in 2010, according to Kaspersky Lab, the Russian cyber security software maker that took credit for discovering the infections.
"I think it is a much more serious threat than Stuxnet," Obiso said.
He said the ITU would set up a program to collect data, including virus samples, to track Flame's spread around the globe and observe any changes in its composition.
Kaspersky Lab said it found the Flame infection after the ITU asked the Russian company to investigate recent reports from Tehran that a mysterious virus was responsible for massive data losses on some Iranian computer systems.
So far, the Kaspersky team has not turned up the original data-wiping virus that they were seeking and the Iranian government has not provided Kaspersky a sample of that software, Obiso said.
A Pentagon spokesman asked about Flame referred reporters to the Department of Homeland Security.
DHS officials declined to respond to specific questions about the virus, but an agency spokesman issued a brief written statement that said: "DHS was notified of the malware and has been working with our federal partners to determine and analyze its potential impact on the U.S."
Some industry participants appeared skeptical that the threat was as serious as the UN agency and Kaspersky had suggested.
Jeff Moss, a respected hacking expert who sits on the U.S. government's Homeland Security Advisory Council, said that the ITU and Kaspersky were "over-reacting" to the spread of Flame.
"It will take time to disassemble, but it is not the end of the Net," said Moss, who serves as chief security officer of the Internet Corporation for Assigned Names and Numbers, or ICANN, which manages some of the Internet's key infrastructure.
"We seem to be getting to a point where every time new malware is discovered it's branded 'the worst ever,'" said Marcus Carey, a researcher at with cyber security firm Rapid7.
Organizations involved in cyber security keep some of their communications confidential to keep adversaries from developing strategies to combat their defenses and also to keep other hackers from obtaining details about emerging threats that they could use to build other pieces of malicious software.
Meanwhile on Tuesday Japanese security software maker Trend Micro Inc said it had discovered a complex cyber campaign to steal information using a piece of malicious software dubbed IXESHE. It had infected government computers in major East Asian countries along with Taiwanese electronics manufacturers and German telecommunications firms operating across Asia.
Trend Micro officials declined to identify the targets or say who they suspect was behind IXESHE (pronounced "i-sushi").
IXESHE infected PCs with tainted PDF files sent to victims via email, then stole large quantities of data from the PCs and sent it to servers in countries including Taiwan, the United States, South Korea, Brazil, Italy and Japan.
"The amount of data that the adversaries exfiltrated from these systems is astounding. These systems have essentially been colonized," Trend Micro Vice President Tom Kellermann said in an interview.
(For more details on IXESHE, see Trend Micro's report here )
(Reporting by Jim Finkle in Boston; Additional reporting by Phil Stewart and Andrea Shalal-Esa in Washington; Editing by Eric Walsh)
Related Quotes and News
We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see http://blogs.reuters.com/fulldisclosure/2010/09/27/toward-a-more-thoughtful-conversation-on-stories/
Back to top
New York Legal
Support & Contact
Connect with Reuters
Our Flagship financial information platform incorporating Reuters Insider
An ultra-low latency infrastructure for electronic trading and data distribution
A connected approach to governance, risk and compliance
Our next generation legal research platform
Our global tax workstation
About Thomson Reuters
Thomson Reuters is the world's largest international multimedia news agency, providing investing news, world news, business news, technology news, headline news, small business news, news alerts, personal finance, stock market, and mutual funds information available on Reuters.com, video, mobile, and interactive television platforms. Thomson Reuters journalists are subject to an Editorial Handbook which requires fair presentation and disclosure of relevant interests.
NYSE and AMEX quotes delayed by at least 20 minutes. Nasdaq delayed by at least 15 minutes. For a complete list of exchanges and delays, please click here.