Cyberwarfare now menacing the enterprise, Kaspersky Lab says
Stuxnet, Flame, Gauss and other state-sponsored cyberwarfare malware is increasingly disrupting operations in organizations
IDG News Service - Enterprise security managers have yet another worry to add to their list: cyberwarfare attacks.
Now, in addition to guarding against targeted attacks from cybercriminals and activists, enterprise security managers must increasingly guard against potential damage from nation-state cyberwarfare as well, according to the head of research from Kaspersky Labs.
"There are actually a lot of cyber weapons [out there now], but they are very hard to discover," said Costin Raiu, Kaspersky Lab's director of global research, who spoke at the Kaspersky Cyber-Security Summit of 2013 Wednesday.
Raiu pointed to how Red October, software that Kaspersky discovered last year, was surreptitiously monitoring computers for at least five years before it was discovered. "This is really shocking for us. We never expected to live in such a stealthy world where we simply don't know how many other similar attacks are out there," Raiu said.
Malicious software from profit-minded cybercriminals still accounts for the majority of malware in circulation today, but malware developed by the military, military contractors or other government agencies is becoming increasingly prevalent as well. Cyberwarfare takes place when one nation deploys malware to disrupt the activities of another nation. Also related is cyberespionage, where malware is planted on computers to spy on governments, corporations and important people.
While an antivirus vendor's warnings about emerging threats can appear to be self-serving, Kaspersky Lab has had a lot of success in the past few years discovering and helping to understand malware supposedly created by governments for purposes of spying and attacking network infrastructure. And Raiu's remarks have already proved to be timely. On Thursday, the New York Times reported that malicious Chinese hackers, using techniques developed by the Chinese military, had infiltrated its computers.
Raiu pointed to recently discovered malware such as Flame, Gauss, Red October and Stuxnet as examples of cyberwarfare malware.
Such cyberwarfare malware can be better-funded, better written and much more difficult to detect and decode than typical malware. "We are now discovering malware that has been active for [as long as] 10 years," Raiu said. "The malware that comes from the nation-state is completely different from what is produced by cybercriminals," he added.
When Kaspersky first unearthed Flame, which it classified as cyberespionage malware, Raiu estimated that, despite the fact it was only 20MB in size, that it would take up to 10 years to truly understand how it works. "No anti-virus company has figured out how Flame works," Raiu said. "There is so much code, so many subroutines, so much obfuscation and encryption that you need a lot of super highly talented people ... to understand what it does."
- DOJ's charges against China reframe security, surveillance debate
- Hacker indictments against China's military unlikely to change anything
- U.S. to formally accuse Chinese military of hacking
- Cyberattacks could paralyze U.S., former defense chief warns
- The NSA blame game: Singling out RSA diverts attention from others
- Jury still out on FISA court
- Suspected China-based hackers 'Comment Crew' rises again
- Chinese hackers master the art of lying in wait
- Spy court OK'd all U.S. wiretap requests it received in 2012
- Groups denounce FBI plan to require Internet backdoors for wiretaps
- The Evolution of Corporate Cyberthreats Cybercriminals are creating and deploying new threats every day that are more destructive than ever before. While you may have more people devoted...
- Platfora Big Data Analytics for Network Security Platfora amplifies the effectiveness of network security analysis, providing Big Data Analytics capability to augment existing security infrastructure for known threats, and advanced...
- Cloud Computing Drives IT and Business Agility Hybrid Cloud Accelerates Time to Value What is the main focus for IT in your organization - cost or agility? Many IT discussions today focus on cost controls rather...
- Infographic:10 Reasons to Choose vCloud Air Looking to create an agile, productive, and efficient IT environment? Read this simple infographic to learn about the benefits that VMware vCloud® Air™...
- Cloud BI in Action: Recorded Webinar of Customer, Kony, Inc. See how Kony, Inc., a leading enterprise mobility company, is using TIBCO Jaspersoft for Amazon Web Services and Redshift to achieve embedded analytics...
- Cloud BI Overview: Jaspersoft for AWS Check out this overview of Jaspersoft for AWS, to easily and affordably build business intelligence solutions as well as embed visualizations and analytics... All Cyberwarfare White Papers | Webcasts