The middle east under malware attack dissecting cyber weapons

Sami Zhioua

doi:10.1109/ICDCSW.2013.30

The middle east under malware attack dissecting cyber weapons

Sami Zhioua

King Fahd University of Petroleum and Minerals

Research output: Contribution to conference › Paper › peer-review

Abstract

The Middle East is currently the target of an unprecedented campaign of cyber attacks carried out by unknown parties. The energy industry is particularly targeted. The attacks are carried out by deploying extremely sophisticated malware. The campaign opened by the Stuxnet malware in 2010 and then continued through Duqu, Flame, Gauss, and Shamoon malware. This paper is a technical survey of the attacking vectors utilized by the three most famous malware, namely, Stuxnet, Flame, and Shamoon. We describe their main modules, their sophisticated spreading capabilities, and we discuss what it sets them apart from typical malware. The main purpose of the paper is to point out the recent trends infused by this new breed of malware into cyber attacks.

Original language	English
Pages	11-16
Number of pages	6
DOIs	https://doi.org/10.1109/ICDCSW.2013.30
Publication status	Published - 1 Dec 2013
Externally published	Yes
Event	33rd IEEE International Conference on Distributed Computing Systems Workshops, ICDCSW 2013 - Philadelphia, PA, United States Duration: 8 Jul 2013 → 11 Jul 2013

Conference

Conference	33rd IEEE International Conference on Distributed Computing Systems Workshops, ICDCSW 2013
Country/Territory	United States
City	Philadelphia, PA
Period	8/07/13 → 11/07/13

Keywords

Aramco
Duqu
Flame
Gauss
Hacking
Information Security
Iran
Malware
Rootkit
Scada
Shamoon
Spying
Stuxnet
Targeted Attacks

Access to Document

10.1109/ICDCSW.2013.30

Cite this

@conference{2c4728b9d2a04baf9ce43531619074bc,

title = "The middle east under malware attack dissecting cyber weapons",

abstract = "The Middle East is currently the target of an unprecedented campaign of cyber attacks carried out by unknown parties. The energy industry is particularly targeted. The attacks are carried out by deploying extremely sophisticated malware. The campaign opened by the Stuxnet malware in 2010 and then continued through Duqu, Flame, Gauss, and Shamoon malware. This paper is a technical survey of the attacking vectors utilized by the three most famous malware, namely, Stuxnet, Flame, and Shamoon. We describe their main modules, their sophisticated spreading capabilities, and we discuss what it sets them apart from typical malware. The main purpose of the paper is to point out the recent trends infused by this new breed of malware into cyber attacks.",

keywords = "Aramco, Duqu, Flame, Gauss, Hacking, Information Security, Iran, Malware, Rootkit, Scada, Shamoon, Spying, Stuxnet, Targeted Attacks",

author = "Sami Zhioua",

year = "2013",

month = dec,

day = "1",

doi = "10.1109/ICDCSW.2013.30",

language = "English",

pages = "11--16",

note = "33rd IEEE International Conference on Distributed Computing Systems Workshops, ICDCSW 2013 ; Conference date: 08-07-2013 Through 11-07-2013",

}

TY - CONF

T1 - The middle east under malware attack dissecting cyber weapons

AU - Zhioua, Sami

PY - 2013/12/1

Y1 - 2013/12/1

N2 - The Middle East is currently the target of an unprecedented campaign of cyber attacks carried out by unknown parties. The energy industry is particularly targeted. The attacks are carried out by deploying extremely sophisticated malware. The campaign opened by the Stuxnet malware in 2010 and then continued through Duqu, Flame, Gauss, and Shamoon malware. This paper is a technical survey of the attacking vectors utilized by the three most famous malware, namely, Stuxnet, Flame, and Shamoon. We describe their main modules, their sophisticated spreading capabilities, and we discuss what it sets them apart from typical malware. The main purpose of the paper is to point out the recent trends infused by this new breed of malware into cyber attacks.

AB - The Middle East is currently the target of an unprecedented campaign of cyber attacks carried out by unknown parties. The energy industry is particularly targeted. The attacks are carried out by deploying extremely sophisticated malware. The campaign opened by the Stuxnet malware in 2010 and then continued through Duqu, Flame, Gauss, and Shamoon malware. This paper is a technical survey of the attacking vectors utilized by the three most famous malware, namely, Stuxnet, Flame, and Shamoon. We describe their main modules, their sophisticated spreading capabilities, and we discuss what it sets them apart from typical malware. The main purpose of the paper is to point out the recent trends infused by this new breed of malware into cyber attacks.

KW - Aramco

KW - Duqu

KW - Flame

KW - Gauss

KW - Hacking

KW - Information Security

KW - Iran

KW - Malware

KW - Rootkit

KW - Scada

KW - Shamoon

KW - Spying

KW - Stuxnet

KW - Targeted Attacks

U2 - 10.1109/ICDCSW.2013.30

DO - 10.1109/ICDCSW.2013.30

M3 - Paper

AN - SCOPUS:84893263921

SP - 11

EP - 16

T2 - 33rd IEEE International Conference on Distributed Computing Systems Workshops, ICDCSW 2013

Y2 - 8 July 2013 through 11 July 2013

ER -

The middle east under malware attack dissecting cyber weapons

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this