Security experts have discovered a new data-stealing malware dubbed "Flame" which, they say has lurked inside thousands of computers across the Middle East for as long as five years as part of a sophisticated cyber warfare campaign. IT company Kaspersky located the malware and confirmed it has been in operation since August 2010 but it agreed it has been running for much longer than that. It has also been agreed that it represents the most complicated IT security threat they have discovered. It is believed that over 600 institutions have been hit in multiple countries across Asia including Egypt, Syria and Iran and in all sectors including the government systems, individuals and academic institutions.The complexity of the attack means that the malware code can be edited once it has infected a machine, modules can be added as required to obtain the required information. The information which can be obtained is also very diverse; the malware can turn on microphones to record audio and send it to the attacker, take screen shots when interesting items were opened, remotely change setting on computers and intercept the keyboard. The fact the malware is so complex and does not have the primary purpose of stealing money, means it has been suggested that this current threat is government- backed as opposed to developed by the usual hacktivists and cybercriminals.Kaspersky is currently investigating Flame further but without having a sample the code in front of them the work will be slow. Those who have infected systems are going to have to speak to experts in IT support and security to locate the malware and remove it.
