Slashdot Mirror
US, Israel Behind Flame Malware
The Washington Post is reporting that the sophisticated 'Flame' malware was created by the United States and Israel in order to collect intelligence on Iranian computer networks. The intel was to be used in a cyber-sabotage campaign intended to slow Iran's development of nuclear weapons. This follows confirmation a few weeks ago that the U.S. and Israel were behind Stuxnet, which caused problems at Iran's nuclear facilities. From the article:
"The emerging details about Flame provide new clues to what is thought to be the first sustained campaign of cyber-sabotage against an adversary of the United States. 'This is about preparing the battlefield for another type of covert action,' said one former high-ranking U.S. intelligence official, who added that Flame and Stuxnet were elements of a broader assault that continues today. 'Cyber-collection against the Iranian program is way further down the road than this.' ... The scale of the espionage and sabotage effort 'is proportionate to the problem that's trying to be resolved,' the former intelligence official said, referring to the Iranian nuclear program. Although Stuxnet and Flame infections can be countered, 'it doesn't mean that other tools aren't in play or performing effectively,' he said."
I mean seriously? Who else besides the Israelis a) hate Iran and b) have the technical chops to do it?
I want to delete my account but Slashdot doesn't allow it.
it is an act of espionage and sabotage proportionate to the problem that is trying to be resolved.
If you do it to us, it will be considered an act of war.
You can never know everything, and part of what you do know will always be wrong. Perhaps even the most important part.
My conjecture is that we will be at war with Iran in time for the election, call it a November surprise. Bunch of FUD stories from the Ministry of Information's various major news network puppets, and then we'll all be chest-pumping while the populace sings let's roll in the tanks.
'We are trying to prove ourselves wrong as quickly as possible, because only in that way can we find progress.' RPF
That's what it's called if anyone other than the US does it...
[Flame] was directed by Israel in a unilateral operation that apparently caught its American partners off guard, according to several U.S. and Western officials, speaking on the condition of anonymity.
Generally these kind of leaks, especially when they happen as much as they have lately, happen at the direction of officials. It's not an accident. The question is why are all these anonymous leaks being passed to the press? Is it because they want Iran to think we have greater capability than we actually do? Some people have speculated that this is an attempt to give Obama an election boost, but one leak is enough to do that, he doesn't need to keep leaking....So what is the purpose?
"First they came for the slanderers and i said nothing."
WikiLeaks chief Julian Assange has made a run for the Ecuadorean Embassy in London, seeking asylum in a long shot move that, if successful, would place him in a small, friendly South American country rather than in Sweden facing questioning about alleged sex crimes.
When the US uses "cyber-terrorism" its portrayed as a heroic action. If Iran does the same thing to the US, we'd use it as an excuse to start yet -another- costly, expensive, and needless war.
Why does it seem like the past 15 years of politics have been "Wag the Dog" repeated over and over again?
Taxation is legalized theft, no more, no less.
not troll at all, what was done would be cyber terrorism by our own definition. Posted anon to save mods
Derp!
No one has admitted to anything whatsoever.
Hearsay is hearsay.
Isn't the only sane response at this point from Iran to get nuclear weapons as quickly as possible to stop us from fucking with them? Then we either decide to leave them alone or go to war with them and bankrupt ourselves.
The CIA has revealed that an entire warehouse of AOL CD's has been shipped to Iran...
For myself I am convinced that the leaders of Iran will use an atomic bomb if they were to possess one. So as far as I'm concerned any means used that will delay the day when Iran tests a bomb are morally justified. There seems to be no small amount of sanctimonious hand wringing here at Slashdot over this use of software to damage Iranian uranium enrichment hardware. So I am curious to know on a scale from 1 - 10 (1 being no threat and a 10 being we should be shitting ourselves) how members of this community view the threat of a nuclear armed Iran.
'I don't know what it's called. I just know the sound it makes, when it takes a man's life.' ~ Four Leaf Tayback
Flame would appear to have been active for years. Don't think Obama had much say in its creation/deployment.
Leaking details to the Press could be his work - I'm sure anything that gets out will put him in a good light.
Iran is NOT americas's enemy.
Israel is an enemy of iran. Israel makes their enemies Americas enemies. If america is iran's enemy I dunno but prolly not
Learn the fucking difference.
Fuck RELIGION, ALL of it.
No lie is better than another lie, and all religions are lies. Unfortunately, religionists can't all butcher each other as belief in superstition deserves because they'd take the rest of us with them...
"This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
I think that Iran should declare war on the US over it. That'd be good for some lolz. You know, like every youtube video where a little fluffy kitteh picks a fight with a doberman :-P But honestly, what are they going to do? Threaten us and Israel, build weapons, launch test missiles? Seriously, I can't think of anything they can or would do about it and if they formally attacked us, that'd be about it for them. This is going to embarrass the hell out of them when they basically are forced to do nothing about it.
Give him a blind fold and a cigarette... and then shoot him.
As if the US didn't have enough of it's image tarnished by the wikileaks issue. Every diplomatic entity in the world is terrified to tell the US anything because they're afraid we'll leak it accidentally or on purpose. You don't leak cover intelligence.
Find the guy that is doing this... and shoot him. If this is Obama's notion of "smart" diplomacy then he's a fool. This is beyond absurd.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Seriously, did the entire staff of the Washington Post just get back from an extended vacation?
I browse on +1 so AC's need not respond, I won't see it.
Well, it's official.
It's now a free-for-all on the Internet for nations to go head-to-head with malware and cyber-espionage. Just like Ike let the Soviets launch their Sputnik to clear the air (heh) about whether territorial rights extend into space (they don't), now the US and Israel have justified it for everyone else to do their own Flame and Stuxnet cyber-espionage.
Since the US is supposedly the leader of the free world, we can either lead by good example or bad. Setting a bad example gets us exactly what we deserve.
Cuing up "What Goes Around, Comes Around" by Chuck Greenberg and Shadowfax.
--
BMO
Sabotage: yes. Cyber terrorism? No. Warfare, yes, but not terrorism.
Explain to me what piece of code that destroys itself from existence after receiving a SUICIDE command isn't the definition of terrorism.
When Stuxnet first emerged, nearly every article touted how this was a "game changerhttp://www.popsci.com/technology/article/2010-11/stuxnet-worm-game-changer-global-cybersecurity-top-us-official-says/." Now, Kasperky so confidently says, âoeWhoever commissioned Stuxnet also commissioned Flame.â Why can't this be a copycat? Everyone predicted that copycats will emerge... and Stuxnet source code was readily available.
In another way, at least Stuxnet and Flame have come to light, show us what's possible, and start us thinking about how to counter. Imagine a world where such capabilities had been kept in the dark until used on a public infrastructure attack.
You speak in the future tense. If you don't think this is being done by governments the world over already, you are fooling yourself. Consider that hacking IT is done relationally by relatively untrained teenagers as a daily occurrence, so the investment cost is very low. For the price of a single nuke, you could have thousands of professional hackers working 24/7 for years. Shit, I bet you Somalia has offensive hackers on the military payroll.
Second, I doubt that anyone will just dump destructive exploits on the public sector in another country unless it is a prelude to an incoming military attack. Why? If you find a vulnerable exploit that you can use to access or destroy secure assets, you don't waste it on the civilian sector. You save it and use it to get something really valuable. (Like their nuclear material refinement computers).
HA! I just wasted some of your bandwidth with a frivolous sig!
I'm afraid the USA has started the World War Three, which will happen in internet. USA and Israel made the first major strikes and now we are waiting strikes back.
Attacking other people's computers in this way is a crime. Absent a declaration of war on Iran, everyone involved in this caper has broken US law. It may be technically legal for Israelis though, if there's an existing state of war between Israel and Iran.
-jcr
The only title of honor that a tyrant can grant is "Enemy of the State."
This should spell the end of Microsoft Windows usage in sensitive government facilities for sure. Even friendly countries will be wary of US government's power over Microsoft. They should/would prefer open source code which they can audit.
Iran? Syria? Right, because the efforts in Afghanistan, Iraq and Libya have gone *so* well. Instead of brutal dictatorships, the US intervention has led to three enlightened, civilized, peaceful countries.
What was Einstein's definition of insanity? Doing the same thing over and over again, and expecting different results?
Unfortunately, you are probably right. Whoever wins in November will have the US involved in another war within a few months...
Enjoy life! This is not a dress rehearsal.
The difference between Bush and Obama is that Bush sent thousands of US soldiers overseas, and Obama (so far) has not.
Afghanistan surge?
Oh.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
if that were the case it should be followed up by a formal request to restructure the security council and remove all veto rights,
And then the U.S. withdraws from the U.N, which becomes a tiny shell of itself without financial support. Perhaps then even having to cut back efforts on promoting the good job China is doing on human rights, or attempting to seize control of the internet to censor it.
The horror! Oh all-wise U.N., don't throw us into that briar patch!
"There is more worth loving than we have strength to love." - Brian Jay Stanley
As if the US didn't have enough of it's image tarnished by the wikileaks issue
Actually the U.S. came out pretty clean from that one, except for a few diplomats. And it made the leakers look like jerks endangering soldiers.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
Iran is not run by complete idiots, they know there is no way they could win a nuclear war with Israel or the US.
What you have forgotten is the victory scenario Iran has in mind:
1) Millions of people dead in Israeli cities.
2) Most of Iran a smoldering glowing wreck, the pesky agitating populace shadows on rubble.
3) The leaders of Iran hanging out in Syria or Pakistan or wherever, helping fund and direct the slow-burn nuclear war between the entire middle east and everyone else, certain they will win by attrition and the weakness of the west.
No, the leaders of Iran are not stupid at all. You however lack imagination., foresight ,or understanding of just what is planned.
"There is more worth loving than we have strength to love." - Brian Jay Stanley
Utterly flabberghasted.
Who could have guessed this? Noone, that's who.
Realtek would have a good argument for business image damage relating to the stolen certificates, wonder if a lawsuit is forthcoming?
Geez.
On a side note, the best way to make virulent bacteria is to expose the bacteria to low doses of antibiotic. Those that survive become very nasty very quickly. MRSA anyone?
Always remember - blowback is a bitch.
Imagine if he turned that virus in to something as destructive as the Avenger program was in the Stargate series.
They'd have hell to pay if something that bad happened.
In fact, I'd not be surprised if war broke out.
SG-1 - Avenger for those who missed it.
It was a risky move indeed.
Regardless, people also have the program now. They opened up a potential horrible future already. Hold on to your butts.
http://www.youtube.com/watch?v=z5rRZdiu1UE
would be more fitting imho.
"Kill 'em all and let Root sort 'em out"
Isn't it just nice when our allies decide to send this kind of shit out on the network where it risks going on to wreak havoc indiscriminately? And for what - to satisfy cravings of a bunch of paranoid Mossad and CIA officers?
if the US government is behind this malware, why didn't they put an end to all stuxnet/flame related virus research and slap a gag order on the virus researchers?
Yes, we all know that most likely Israel and the USA are behind Stuxnet, but technically speaking nothing has been "confirmed". For diplomatic reasons the US and Israel need this to remain a "Yeah, we know you did it, we just can't offer conclusive proof" kind of thing. Confirming it could cause Iran to declare a state of war. As long as there is a twinge of doubt, the situation remains more stable.
[citation needed]
Seriously, you might as well have said that about the US. You know, how our leaders would just be chilling in the UK while our cities were destroyed with nuclear bombs.
Palm trees and 8
I am Jack's complete lack of surprise.
Stuxnet and Flame represent a technology that, while effective, are certain to fall into enemy hands after first use. And, as was feared with the prox. fuse, the enemy will build countermeasures to prevent or mitigate future damage. This may have been our one big shot with these cyber weapons. Why and for whose benefit did we deploy them?
Have gnu, will travel.
You could have fooled me.. So does that mean it's a declaration of war?
Nothing in any of those links establishes confirmation that U.S. or Israel had anything to do with either malwares. There is direct assertion, but buried deep in either piece is an open admission that these are ultimately unsubstantiated suspicions. The reporter says the U.S. developed Flame, but that's all. It just says it. This is not confirmation or proof that U.S. actually did it.
*"won't of"; yes I saw it too. Although I'm British this still pissed me off - I want justice..
Can someone please explain to me the big deal abotu so called cyber-warfare? So their program got set back a few years; a nuclear weapon has always been a diversion anyways; Iran's got plenty of other options to turn up the heat on the world. Most companies I've worked for have servers with back up tapes and back up systems, and even when I worked in the Defense industry our main data servers were hardened and not accessible to the internet, only internal networks and we weren't making anything classified. If we got attacked, the worst thing that would happen is they steal the data on a mostly commercial product; sucks for our company but not catastrophic. And I don't believe the Hollywood Die Hrd 4 scenario where a team of people can effectively shut down the country and take over everything threatening lives and infrastructure. The worst I see cyber-warfare doing is set things back a few days, maybe a week; a nuisance at best.
Flame was gathering intel, and Stuxnet damaged thier servers. Ok, fair enough. If I was running that program I'd buy backup servers just in case and store data on non-networked backup files so that way in case of a problem, you move to your backups while you clean the primaries. At worst set back a month, and this situation was bad for IRan's program only because of bad IT policies as far as I'm concerned. With good IT policies, what can cyber-warfare really hope to accomplish?
I'm genuinely asking the slashdot community; I have trouble envisioning how this is a form of warfare that can advance the agenda of the country initiating it.
These leaks are by "former" officials - and the revolving door spins so fast they get positions in the military-industrial complex instantly. First we have a lot of big-name former officials orchestrating a scare campaign in the news to convince people there is a threat, and now the same former officials are doing an anonymous leak campaign. How trustworthy is this information? Are any of these leaks from people who have a vested financial interest in making us scared?
They do not hate Iran....they only fear them because of their continued attempts to destroy them via Hamas/Hezbolla/Egypt/Syria/etc...and their stated intent to wipe them off the map...while working on nukes.
My God can beat up your God. Just kidding...don't take offense. I know there's no God.
Iran'd get beat by the USA in a heartbeat. Formidable enemy my ass. Saddam had the 3rd largest army there was on the planet - how'd he do?
Persians & a million++ man army couldn't take on 300 Spartans (who held out against them for a week, & shouldn't have lasted a minute vs. that many) - you expect them to take on the USA & win? LMAO - you're a fool.
APK
P.S.=> There's NO NATION on this planet that can "outmuscle" us - the only way to "beat" us? Economically... apk
FUCK ISRA HELL
Yeah, Iran doesn't seem like the kind of country to fight with nuclear weapons when it's being fucked with. Not at all.