Skip to main content

Shamoon virus targets energy sector infrastructure


A new threat targeting infrastructure in the energy industry has been uncovered by security specialists.
The attack, known as Shamoon, is said to have hit "at least one organisation" in the sector.
Shamoon is capable of wiping files and rendering several computers on a network unusable.
On Wednesday, Saudi Arabia's national oil company said an attack had led to its own network being taken offline.
Although Saudi Aramco did not link the issue to the Shamoon threat, it did confirm that the company had suffered a "sudden disruption".
In a statement, the company said it had now isolated its computer networks as a precautionary measure.
The disruptions were "suspected to be the result of a virus that had infected personal workstations without affecting the primary components of the network", a statement read.
It said the attack had had "no impact whatsoever" on production operations.
Rendered unusable On Thursday, security firms released the first detailed information about Shamoon.
Experts said the threat was known to have had hit "at least one organisation" in the energy sector.
"It is a destructive malware that corrupts files on a compromised computer and overwrites the MBR (Master Boot Record) in an effort to render a computer unusable," wrote security firm Symantec.

Start Quote

Why would someone wipe files in a targeted attack and make the machine unusable?”
End Quote Seculert
The attack was designed to penetrate a computer through the internet, before targeting other machines on the same network that were not directly connected to the internet.
Once infected, the machines' data is wiped. A list of the wiped files then sent back to the initially infected computer, and in turn passed on to the attacker's command-and-control centre.
During this process, the attack replaces the deleted files with JPEG images - obstructing any potential file recovery by the victim.
'Under the radar' Seculert, an Israel-based security specialist, also analysed the malicious code and concluded that it had unusual characteristics compared with other recent attacks.
"The interesting part of this malware is that instead of staying under the radar and collect information, the malware was designed to overwrite and wipe the files," the company said.
"Why would someone wipe files in a targeted attack and make the machine unusable?"
Shamoon is the latest in a line of attacks that have targeted infrastructure.
One of the most high-profile attacks in recent times was Stuxnet, which was designed to hit nuclear infrastructure in Iran.
Others, like Duqu, have sought to infiltrate networks in order to steal data.
Labels:

Comments

Post a Comment

Popular posts from this blog

The 101 Most Useful Websites

Here are my picks for the 101 most useful websites of the year. The Most Useful Websites and Web Apps The sites mentioned here, well most of them, solve at least one problem really well and they all have simple web addresses (URLs) that you can easily learn by heart thus saving you a trip to Google. 01.   screenr.com   – record movies of your desktop and send them straight to YouTube. 02.   bounceapp.com   – for capturing full length screenshots of web pages. 03.   goo.gl   – shorten long URLs and convert URLs into   QR codes . 04.   unfurlr.come   – find the original URL that’s hiding behind a short URL. 05.   qClock   – find the local time of a city using a   Google Map . 06.   copypastecharacter.com   – copy special characters that aren’t on your keyboard. 07.   postpost.com   – a better search engine for twitter. 08.   lovelycharts.com   – create flowcharts, network diagrams, ...
Post a Comment
Read more

India Become the fourth largest country in android app downloads : GOOGLE

Google's announcements on Thursday brought plenty to cheer to both Android developers and end-users in India. Google announced that Indian developers will be able to monetize their apps via paid applications, in-app products, and subscriptions. Further, Google announced that end users will be able to pay for their purchases in Indian rupees, ensuring greater transparency over the amount charged and, possibly, better deals on apps via country-specific pricing. Google shared these two announcements via a blog post. In the same blog post, Google also shared some interesting stats with respect to Android usage in India. First, the number of activations. According to Google, over the past year, Android device activations in India have jumped more than 400%. It is not clear if Google is referring to the number of activations per day, or the total devices activated till date, but either way, those are impressive numbers. Google added that in the last six months, Android u...
Post a Comment
Read more

Lets Ditch Google For New Alternative : DuckDuckGo

 Some of the largest companies on the Web have attempted to compete with Google and failed. DuckDuckGo , on the other hand, is about as small as a company can be — it has one full-time employee — and has come up with one of the most appealing Google alternatives to date. It doesn't involve e-mail, maps, real-time results or social networking. It's just a simple, straightforward search engine that's reminiscent of early Google, with a no-nonsense privacy policy (it will not store any information that could tie you to your searches). Best of all, the results are dependably relevant and devoid of spam.It has come in the list of top 50websites of 2011 of times magazine. Lets give a try to ditch google . After giving a try please give your suggestion in comments.
Post a Comment
Read more