Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
Slashdot Deals: Prep for the CompTIA A+ certification exam. Save 95% on the CompTIA IT Certification Bundle ×
Security

Submission + - Mystery 'Wiper' malware likely written on Tilded cyber-malware platform->

concertina226 writes: It appeared from nowhere last April, attacked computers in Iran and then destroyed almost all evidence of its existence. So what was the super-destructive malware now dubbed ‘Wiper’?

Evidence for the malware emerged in April after the Iranian Oil Ministry announced that some of its installations had been attacked by a ‘worm’ that was deleting numerous types of data files from hard drives.

Because the malware was designed to remove all traces of its existence, the job of hunting it down has proved hard work. The company’s best guess is that it was written on what is called the ‘Tilded’ cyber-malware platform which means it must be related to Stuxnet malware and its mysterious companion, Duqu.

The evidence? Mainly, tiny pointers that Wiper had named a registry key using the same file-naming format as Duqu as well as forensic evidence that it did the same for its temp files.

Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Mystery 'Wiper' malware likely written on Tilded cyber-malware platform

Comments Filter:

We don't really understand it, so we'll give it to the programmers.

Working...