[QODLink]
Middle East
Iran targeted in cyber espionage campaign
Security companies say targets in the Middle East are victims of unknown cyber hackers who communicate in Farsi.
Last Modified: 17 Jul 2012 18:44
Mahdi Trojan lets remote attackers steal files and monitor emails and instant messages [Getty Images]

Security experts have uncovered an ongoing cyber espionage campaign targeting Iran and other Middle Eastern countries that they say stands out because it is the first such operation using communications tools written in Farsi.

Israeli security company Seculert and Russia's Kaspersky Lab said on Tuesday that they identified more than 800 victims of the operation.

The targets include critical infrastructure companies, engineering students, financial services firms and government embassies located in five Middle Eastern countries, with the majority of the infections in Iran.

Seculert and Kaspersky declined to identify specific targets of the campaign, which they believe began at least eight months ago. They said they did not know who was behind the attacks or if it was a nation state.

"It's for sure somebody who is fluent in Persian, but we don't know the origin of those guys," said Aviv Raff, Seculert's chief technology officer.

The Mahdi Trojan lets remote attackers steal files from infected PCs and monitor emails and instant messages, Seculert and Kaspersky said.

It can also record audio, log keystrokes and take screen shots of activity on those computers. The firms said they believe multiple gigabytes of data have been uploaded from targeted machines.

"Somebody is trying to build a dossier of a larger scale on something," Raff said. "We don't know what they are going to do at the end."

Researchers have previously said that nation states were almost certainly behind the Flame virus, which was discovered earlier this year, and Duqu, which was uncovered in 2011.They also included a text file named mahdi.txt in the malicious software that infected targeted computers.

266

Source:
Agencies
Featured on Al Jazeera
UNHCR says hundreds of people trapped in Yaloke town risk death if they are not evacuated to safety urgently.
'Justice for All' demonstrations swell across the US over the deaths of African Americans in police encounters.
Six former Guantanamo detainees are now free in Uruguay with some hailing the decision to grant them asylum.
Disproportionately high number of Aboriginal people in prison highlights inequality and marginalisation, critics say.
Featured
Long-standing dispute over Christian use of the word 'Allah' raises concerns about a very un-Merry Christmas.
The threat posed by ISIL has prompted thousands of young Kurds to join the PKK.
Baja California - with its own grim history of disappeared people - finds a voice in the fight against violence.
Russian feminist rockers fight system holding 700,000 - the world's largest per capita prison population after the US.
Weeks of growing protests against Muslims continue in Dresden with 15,000 hitting the streets last Monday.