It looks like you're using an Ad Blocker.

Please white-list or disable AboveTopSecret.com in your ad-blocking tool.

Thank you.

 

Some features of ATS will be disabled while you continue to use an ad-blocker.

 

Iran says it has 'controlled' Duqu malware attack

page: 1
6

log in

join
share:

posted on Nov, 14 2011 @ 05:14 PM
link   

Iran says it has 'controlled' Duqu malware attack


www.bbc.co.uk

Iran has confirmed some of its computer systems were infected with the Duqu trojan, but said it has found a way to control the malware.

Security organisations had previously identified Iran as one of at least eight countries targeted by the code.

The spyware is believed to have been designed to steal data to help launch further cyber attacks.

The sender has not been identified, but researchers have found a reference to a US television programme in Duqu's code.

The Iranian news agency, IRNA, reported that the country's cyber defence unit was taking steps to combat the infection.
(visit the link for the full news article)



posted on Nov, 14 2011 @ 05:14 PM
link   
Seems like the pre-fight hype is smoldering.Is this a claim by Iran that the U.S. is doing a pre-emptive attack.Or is this a real First strike to soften them up for Isreal.

There seems to be alot of name calling going on that is different from the usual North Korea saber rattling going on.

Does appear there is going to be quite a fight a fight shaping up with Iran gaing support from Russia and China

www.bbc.co.uk
(visit the link for the full news article)



posted on Nov, 14 2011 @ 05:22 PM
link   
reply to post by alchemist2012
 


Reference to a US television program. I don't know much about coding, why would that be found in there? Does it say what the reference is?



posted on Nov, 14 2011 @ 05:30 PM
link   

Originally posted by GogoVicMorrow
reply to post by alchemist2012
 


Reference to a US television program. I don't know much about coding, why would that be found in there? Does it say what the reference is?



When the addressee opened the file the malware became active through a Truetype font exploit, but did nothing until it detected that there had been no keyboard or mouse activity for ten minutes. Kaspersky Lab said the font was called Dexter Regular and its creators were identified as Showtime Inc. "This is another prank pulled by the Duqu authors, since Showtime Inc is the cable broadcasting company behind the TV series Dexter, about a CSI doctor who happens also to be a serial killer," the report said.


Is this a real or fake clue? Or is it meant more as a punch in the face? I don't watch TV really, never seen this show (my co-worker raves about it though) anyone watch who might understand the significance, if any?

Perhaps the author is trying to say "it's show time!"
edit on 14-11-2011 by TinkerHaus because: (no reason given)



posted on Nov, 14 2011 @ 05:35 PM
link   
And thus my confusion,I came here to ATS to see what is the going on with this but it sure seems an odd one does it not



posted on Nov, 14 2011 @ 05:42 PM
link   
This is categorized as full and official blown cyber war between nations, sit back and take notes as i am sure they will come in handy if and when you or anyone decides to go off the grid.



posted on Nov, 14 2011 @ 05:53 PM
link   
reply to post by cerebralassassins
 


Please explain some more what do you mean by Cyberwar????



posted on Nov, 14 2011 @ 06:00 PM
link   
reply to post by alchemist2012
 




Read between the lines, or should i say listen between the lines.



As i said, its the real deal and the public has been anesthetized



posted on Nov, 14 2011 @ 06:06 PM
link   
reply to post by TinkerHaus
 


I watch it. Really good stuff despite being completely inaccurate. That is really weird. A lot of people have committed crimes in the name of this show and a lot of people relate to the main character. I suppose that a parallel could be drawn between the trojan creator and main character. The thesis being: doing bad for the greater good. Maybe. The show is about a serial killer that justifies his urges and killings by stalking and murdering only criminals that themselves have committed (at least) a murder and are unrepentant.

Strange though.
edit on 14-11-2011 by GogoVicMorrow because: (no reason given)



posted on Nov, 14 2011 @ 06:09 PM
link   
reply to post by GogoVicMorrow
 


So some American Citizen is behind this??? Is a private citizen hacker or not capable of taking an attack to a foriegn government???



posted on Nov, 14 2011 @ 06:12 PM
link   
reply to post by alchemist2012
 


Nope.. We don't know if they are American or not. This show is internationally popular.

Case in point: A Canadian that committed crimes after "relating" to the shows character Dexter Morgan.

Mark Twitchell Connections were established between Dexter Morgan and Mark Twitchell, of Edmonton, Alberta, Canada, during his first-degree murder trial. After weeks of testimony and gruesome evidence presented in court, Twitchell was found guilty of the planned and deliberate murder of 38-year-old Johnny Altinger on April 12, 2011.[26] Twitchell, an aspiring filmmaker, had adopted the persona "Dexter Morgan" on Facebook and made a movie that was similar to how Dexter operates.[27] Prosecutors alleged that Twitchell had begun a secret double life inspired by Dexter.[28] Twitchell wanted to reenact the life of Dexter Morgan, and after writing a script for a Dexter movie, began posing as a woman online interested in having affairs with married men.[29] Detective Mark Anstey of the Edmonton Police Service was quoted as saying, "We have a lot of information to suggest he definitely idolizes Dexter," and Twitchell had posted a Facebook status stating that he believed he had "way too much in common with Dexter Morgan."[30][31]

en.wikipedia.org...

Also.. I highly doubt it's a citizen at all. The reference could just be thrown in to link it to popular western culture.
edit on 14-11-2011 by GogoVicMorrow because: (no reason given)



posted on Nov, 14 2011 @ 06:39 PM
link   

The attackers used Duqu to install another infostealer that could record keystrokes and gain other system information. The attackers were searching for assets that could be used in a future attack. In one case, the attackers did not appear to successfully exfiltrate any sensitive data, but details are not available in all cases. Two variants were recovered, and in reviewing our archive of submissions, the first recording of one of the binaries was on September 1, 2011. However, based on file compile times, attacks using these variants may have been conducted as early as December 2010.

One of the variant’s driver files was signed with a valid digital certificate that expires August 2, 2012. The digital certificate belongs to a company headquartered in Taipei, Taiwan. The certificate was revoked on October 14, 2011.


www.symantec.com...

Hrmm...?

Has anyone else found a list of the 7 other countries infected?



posted on Nov, 15 2011 @ 09:27 AM
link   

Originally posted by tooo many pills

The attackers used Duqu to install another infostealer that could record keystrokes and gain other system information. The attackers were searching for assets that could be used in a future attack. In one case, the attackers did not appear to successfully exfiltrate any sensitive data, but details are not available in all cases. Two variants were recovered, and in reviewing our archive of submissions, the first recording of one of the binaries was on September 1, 2011. However, based on file compile times, attacks using these variants may have been conducted as early as December 2010.

One of the variant’s driver files was signed with a valid digital certificate that expires August 2, 2012. The digital certificate belongs to a company headquartered in Taipei, Taiwan. The certificate was revoked on October 14, 2011.


www.symantec.com...

Hae not found the list of the 7 other countries but i would be willing o bet they are not our allies

Hrmm...?

Has anyone else found a list of the 7 other countries infected?



posted on Nov, 15 2011 @ 10:29 AM
link   
here's a link.

can't copy from the page.

duqu



posted on Nov, 15 2011 @ 10:36 AM
link   

Originally posted by GogoVicMorrow
reply to post by alchemist2012
 


Nope.. We don't know if they are American or not. This show is internationally popular.

Case in point: A Canadian that committed crimes after "relating" to the shows character Dexter Morgan.

Mark Twitchell Connections were established between Dexter Morgan and Mark Twitchell, of Edmonton, Alberta, Canada, during his first-degree murder trial. After weeks of testimony and gruesome evidence presented in court, Twitchell was found guilty of the planned and deliberate murder of 38-year-old Johnny Altinger on April 12, 2011.[26] Twitchell, an aspiring filmmaker, had adopted the persona "Dexter Morgan" on Facebook and made a movie that was similar to how Dexter operates.[27] Prosecutors alleged that Twitchell had begun a secret double life inspired by Dexter.[28] Twitchell wanted to reenact the life of Dexter Morgan, and after writing a script for a Dexter movie, began posing as a woman online interested in having affairs with married men.[29] Detective Mark Anstey of the Edmonton Police Service was quoted as saying, "We have a lot of information to suggest he definitely idolizes Dexter," and Twitchell had posted a Facebook status stating that he believed he had "way too much in common with Dexter Morgan."[30][31]

en.wikipedia.org...

Also.. I highly doubt it's a citizen at all. The reference could just be thrown in to link it to popular western culture.
edit on 14-11-2011 by GogoVicMorrow because: (no reason given)


It is a great show..

Dexter would have been disappointed at the moron in this case..

It could be any country or anyone really who made this.







 
6

log in

join