Specific Criticism of CVSS4
Marc Ruef
Media report that Russian security company Kaspersky has been compromised during an electronic break-in. The incident, the malware used by the attackers and the political context of the attack have led to an increased media interest and questions to scip AG regarding the attack Kaspersky has dubbed Duqu 2.0.
The following should give you an overview over the most important aspects oft he case.
Russian security research company Kaspersky reported on June 10th, 2015, that they have fallen victim to an attack. Eugene Kaspersky, founder oft he company, describes how researchers discovered the attack, how it has been analysed and what conclusions they can draw.
A first analysis by Kaspersky has shown that malware was used that is identical with the malware known as Duqu in key aspects. Therefore the Malware was named Duqu 2.0 by the researchers. The first version of Duqu was used during attacks in 2011.
An extended analysis by security company Symantec has shown that the extended version Duqu 2.0 mainly has three new features:
Security companies are lucrative targets for a variety of attackers. Manufacturers such as Kaspersky research and develop new technologies combatting computer attacks and malware. If an attacker gains access to the security company’s research, the attacker holds a strategic and tactical advantage for further attacks.
There are two possibilities to identify victims of malware:
Kaspersky emphasises that they can not conclusively name a culprit. The complexity and professionality of Duqu and Duqu 2.0 point to an attacker with considerable financial means. The most likely culprits based on this are governments and organised crime. The targets have primarily been political in nature. This points to the attacker being a governmental agency. Among the targets were political talks regarding Iran’s nuclear weapons program or celebrations of the 70th Anniversary of the Liberation of Auschwitz-Birkenau. These are all indicators that Duqu 2.0 is an Israeli product. This assessment remains unconfirmed.
Our experts will get in contact with you!
Marc Ruef
Marc Ruef
Marc Ruef
Marc Ruef
Our experts will get in contact with you!