http://bit.ly/ijY26n
Wednesday, May 18, 2011 Iranian Cyber War Continues: First Stuxnet, Now Stars, and Then Stripes? <http://www.amarjit.info/2011/05/iranian-cyber-war-continues-first.html> Iranian Cyber War Continues: First Stuxnet, Now Stars, and Then Stripes? The saga about the cyber war against the Iranian nuclear program continues thanks to the commander of Iranian Civil Defense Gholamreza Jalali. Only this time it wasn't all about the computer worm Stuxnet. In Jalali's recent statement the new action figure was introduced to the public '" computer virus Stars. After the brief introduction the story about Stars was presented in a very traditional way. As you probably already guessed, Stars was completely removed from the infected computers, locked up in a lab, scrutinized by Iranian scientists, and the USA and Israel were blamed for the second cyber attack. Everything sounded very convincing, except certain minor details. Let's take a closer look. On April 25, 2011 Gholamreza Jalali announced that Iran was targeted by a computer virus Stars. According to Reuters quotation Jalali said, "Fortunately, our young experts [or "scientists" in another translation] have been able to discover this virus and the Stars virus is now in the laboratory for more investigations -- The particular characteristics of the Stars virus have been discovered. The virus is congruous and harmonious with the [computer] system and in the initial phase it does minor damage and might be mistaken for some executive files of government organizations." The Stars virus description sounded familiar and had many similarities with the Stuxnet computer worm. Stuxnet used to make itself an undetectable and non-removable part of software (or let's say "congruous and harmonious"). Stuxnet was harmless before it found the right computer (how about "in the initial phase it does minor damage"). Stuxnet pretended to be a legitimate software update (or in other words "might be mistaken for -- "). Does it mean that the Stars virus is a previously unknown version of Stuxnet? [Non-text portions of this message have been removed] ------------------------------------ -------------------------- Want to discuss this topic? Head on over to our discussion list, [email protected]. -------------------------- Brooks Isoldi, editor [email protected] http://www.intellnet.org Post message: [email protected] Subscribe: [email protected] Unsubscribe: [email protected] *** FAIR USE NOTICE. This message contains copyrighted material whose use has not been specifically authorized by the copyright owner. OSINT, as a part of The Intelligence Network, is making it available without profit to OSINT YahooGroups members who have expressed a prior interest in receiving the included information in their efforts to advance the understanding of intelligence and law enforcement organizations, their activities, methods, techniques, human rights, civil liberties, social justice and other intelligence related issues, for non-profit research and educational purposes only. We believe that this constitutes a 'fair use' of the copyrighted material as provided for in section 107 of the U.S. Copyright Law. If you wish to use this copyrighted material for purposes of your own that go beyond 'fair use,' you must obtain permission from the copyright owner. For more information go to: http://www.law.cornell.edu/uscode/17/107.shtmlYahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/osint/ <*> Your email settings: Individual Email | Traditional <*> To change settings online go to: http://groups.yahoo.com/group/osint/join (Yahoo! ID required) <*> To change settings via email: [email protected] [email protected] <*> To unsubscribe from this group, send an email to: [email protected] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
