Cyberwarfare now menacing the enterprise, Kaspersky Lab says
Stuxnet, Flame, Gauss and other state-sponsored cyberwarfare malware is increasingly disrupting operations in organizations
IDG News Service - Enterprise security managers have yet another worry to add to their list: cyberwarfare attacks.
Now, in addition to guarding against targeted attacks from cybercriminals and activists, enterprise security managers must increasingly guard against potential damage from nation-state cyberwarfare as well, according to the head of research from Kaspersky Labs.
"There are actually a lot of cyber weapons [out there now], but they are very hard to discover," said Costin Raiu, Kaspersky Lab's director of global research, who spoke at the Kaspersky Cyber-Security Summit of 2013 Wednesday.
Raiu pointed to how Red October, software that Kaspersky discovered last year, was surreptitiously monitoring computers for at least five years before it was discovered. "This is really shocking for us. We never expected to live in such a stealthy world where we simply don't know how many other similar attacks are out there," Raiu said.
Malicious software from profit-minded cybercriminals still accounts for the majority of malware in circulation today, but malware developed by the military, military contractors or other government agencies is becoming increasingly prevalent as well. Cyberwarfare takes place when one nation deploys malware to disrupt the activities of another nation. Also related is cyberespionage, where malware is planted on computers to spy on governments, corporations and important people.
While an antivirus vendor's warnings about emerging threats can appear to be self-serving, Kaspersky Lab has had a lot of success in the past few years discovering and helping to understand malware supposedly created by governments for purposes of spying and attacking network infrastructure. And Raiu's remarks have already proved to be timely. On Thursday, the New York Times reported that malicious Chinese hackers, using techniques developed by the Chinese military, had infiltrated its computers.
Raiu pointed to recently discovered malware such as Flame, Gauss, Red October and Stuxnet as examples of cyberwarfare malware.
Such cyberwarfare malware can be better-funded, better written and much more difficult to detect and decode than typical malware. "We are now discovering malware that has been active for [as long as] 10 years," Raiu said. "The malware that comes from the nation-state is completely different from what is produced by cybercriminals," he added.
When Kaspersky first unearthed Flame, which it classified as cyberespionage malware, Raiu estimated that, despite the fact it was only 20MB in size, that it would take up to 10 years to truly understand how it works. "No anti-virus company has figured out how Flame works," Raiu said. "There is so much code, so many subroutines, so much obfuscation and encryption that you need a lot of super highly talented people ... to understand what it does."
- The NSA blame game: Singling out RSA diverts attention from others
- Jury still out on FISA court
- Suspected China-based hackers 'Comment Crew' rises again
- Chinese hackers master the art of lying in wait
- Spy court OK'd all U.S. wiretap requests it received in 2012
- Groups denounce FBI plan to require Internet backdoors for wiretaps
- South Korea cyberattacks hold lessons for U.S.
- U.S. military networks not prepared for cyberthreats, report warns
- Return of CISPA: Cybersecurity boon or privacy threat?
- New report says cyberspying group linked to China's army
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Mobile Applications Case Study: 8 Billion Transactions a Day The story documents how the online brokerage company tradeMONSTER created a custom mobile app and the success gleaned from this initiative. Also covered...
- Who's afraid of the big (data) bad wolf? Survive the big data storm by getting ahead of integration and governance functional requirements This paper provides a detailed review of the best practices clients should consider before embarking on their big data integration projects.
- Understanding big data so you can act with confidence Automating information integration and governance and employing it at the point of data creation helps organizations boost confidence in their big data.
- Mobile Apps and Devices Slash Customer Cycle Time Consolidated Engineering Laboratories' field employees used to collect data on triplicate forms that were sometimes hard to read and difficult to manage. After...
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources... All Cyberwarfare White Papers | Webcasts