Gold iPad at Burj Al Arab
Minimum wage ‘unfair’ for employers?
Taking on Abercrombie & Fitch
Fake pilot ‘on the run’
“Your customers aren’t fools”
Behind the curtain of Simone Heng
Chatting with the man behind Dubai City Pass
A business discussion with the author of ‘Connect The Dots’
INTERVIEW: Cyber virus infects Middle East PCs
Kaspersky Lab has uncovered more than 2,500 computers infected with Gauss since late May
August 9, 2012 11:33 by Reuters
A new computer virus, dubbed Gauss, has been discovered in the Middle East. Researchers say can it steal banking credentials and hijack log in information for social networking sites, email and instant messaging accounts.
Cyber security firm Kaspersky Lab said Gauss is the work of the same “factory” or “factories” that built the Stuxnet worm, which attacked Iran’s nuclear program.
Here are some key facts about Gauss, according to Kaspersky Lab.
Q. What is its purpose?
A. Gauss is a surveillance tool. It steals credentials for hacking online banking systems, social networking sites and email accounts; it also gathers information about infected PCs, including Web browsing history, system passwords and the contents of disk drives.
Q. Can it do anything else?
A. There is a mysterious module, known as Godel, that copies malicious code onto USB drives when they are plugged into infected PCs. Godel’s purpose is unknown because some of its code is compressed and scrambled using a sophisticated encryption method. It only activates when it infects a predetermined target.
Researchers have not identified the target or figured out its mission. Kaspersky Lab senior researcher Roel Schouwenberg said he believes it may be a “warhead” designed to damage industrial control systems.
Q. How many victims are there?
A. Kaspersky Lab has uncovered more than 2,500 computers infected with Gauss since late May. It estimates the total number of victims is in the tens of thousands. The largest number of infections were found were inLebanon, followed by Israel and the Palestinian Territories.
Q. Is Gauss still a threat?
A. Yes. Infected USB drives could still launch attacks. Servers that controlled infected machines were shut down in July, so it is unlikely that any more information will be stolen from the surveillance part of the operation.
Q. Why is it called Gauss?
A. The virus is built using modules with internal names that appear to be inspired by famous mathematicians and philosophers, including Kurt Godel, Johann Carl Friedrich Gauss and Joseph-Louis Lagrange. Kaspersky named the entire operation after the Gauss component as it implements the data-stealing capabilities.
More on Analysis
-
Over 90% of passwords vulnerable to hacking
-
‘Renewable energy absolutely necessary’ – Saudi
-
Real cost of sending your child to a Dubai school
-
BurgerFuel rockets its way across Dubai
-
Middle East deadly virus – what do we call it?
-
BurgerFuel’s aggressive expansion plans
-
Qatar’s Leverage Over Banks Is On The Wane
-
First report by Etisalat covering global footprint
-
Qatar Should Consider More Flexible Exchange Rate – Central Banker
-
Yahoo on Tumblr: ‘we promise not to screw it up’
-
Arabtec workers: strike will continue
-
Kuwait: expats sent packing
-
Dubai Labourers on ‘rare’ labour protest
-
Tumblr officially off the market
-
A major step for Turkey
-
Dusting off the Emirates ID card
-
Turkish Airlines Can Ride Out Turbulence
-
Air Berlin doesn’t need Etihad’s help
-
Turkey’s IMF emancipation deserves cautious cheer
-
Nokia charging back with full force
Lately on Kipp
-
Dubai ruler makes horse doping illegal
-
CEO-elect of UAE’s fraud-hit RAKBANK has quit
-
Over 90% of passwords vulnerable to hacking
-
‘Renewable energy absolutely necessary’ – Saudi
-
NEC Display Solutions launches Full HD 3D ready compact meeting room projector
-
Saudi Arabia confirms another death from SARS-like virus
