decoration decoration
Stories

GROKLAW
When you want to know more...
decoration
For layout only
Home
Archives
Site Map
Search
About Groklaw
Awards
Legal Research
Timelines
ApplevSamsung
ApplevSamsung p.2
ArchiveExplorer
Autozone
Bilski
Cases
Cast: Lawyers
Comes v. MS
Contracts/Documents
Courts
DRM
Gordon v MS
GPL
Grokdoc
HTML How To
IPI v RH
IV v. Google
Legal Docs
Lodsys
MS Litigations
MSvB&N
News Picks
Novell v. MS
Novell-MS Deal
ODF/OOXML
OOXML Appeals
OraclevGoogle
Patents
ProjectMonterey
Psystar
Quote Database
Red Hat v SCO
Salus Book
SCEA v Hotz
SCO Appeals
SCO Bankruptcy
SCO Financials
SCO Overview
SCO v IBM
SCO v Novell
SCO:Soup2Nuts
SCOsource
Sean Daly
Software Patents
Switch to Linux
Transcripts
Unix Books
Your contributions keep Groklaw going.
To donate to Groklaw 2.0:

Groklaw Gear

Click here to send an email to the editor of this weblog.


Contact PJ

Click here to email PJ. You won't find me on Facebook Donate Paypal


User Functions

Username:

Password:

Don't have an account yet? Sign up as a New User

No Legal Advice

The information on Groklaw is not intended to constitute legal advice. While Mark is a lawyer and he has asked other lawyers and law students to contribute articles, all of these articles are offered to help educate, not to provide specific legal advice. They are not your lawyers.

Here's Groklaw's comments policy.


What's New

STORIES
No new stories

COMMENTS last 48 hrs
No new comments


Sponsors

Hosting:
hosted by ibiblio

On servers donated to ibiblio by AMD.

Webmaster
Ah.... an API | 200 comments | Create New Account
Comments belong to whoever posts them. Please notify us of inappropriate comments.
Flame: Massive cyber-attack discovered
Authored by: Anonymous on Tuesday, May 29 2012 @ 03:32 AM EDT
Interesting. Pity the article doesn't mention what system(s) Flame can infect, it would be nice to know if the alleged state-backed authors are still relying on a certain North American corporation to provide the necessary back doors for their malware.

A quick Google lead me here, which refers to it running on a patched Windows 7 machine, but it is unclear whether more modern systems are vulnerable.

- O4W

[ Reply to This | Parent | # ]

Looks like a Win vulnerability
Authored by: Anonymous on Tuesday, May 29 2012 @ 12:17 PM EDT
In systems from win2000-7 and server 2003/2008 for quartz.dll and/or
asysfilt.dll. Would have been patched with ms10-033 but some of these older
systems are forgotton in that regard.

[ Reply to This | Parent | # ]

Ah.... an API
Authored by: Anonymous on Tuesday, May 29 2012 @ 01:48 PM EDT
Wonder if they copyrighted it?

[ Reply to This | Parent | # ]

Flame sends the data to whom?
Authored by: Anonymous on Tuesday, May 29 2012 @ 04:49 PM EDT

According to Wired,

The malware contains a hardcoded list of about five domains, but also has an updatable list
One has to wonder to whom those domains are registered.

[ Reply to This | Parent | # ]

Flame: it's a Windows app.
Authored by: Anonymous on Tuesday, May 29 2012 @ 08:11 PM EDT
Current web reports state entry is through a common Windows XP, Vista, Windows7
vulnerability. How come the hole has been there that long?
20Mb indicates bloatware is needed to hide the thing

[ Reply to This | Parent | # ]

Groklaw © Copyright 2003-2013 Pamela Jones.
All trademarks and copyrights on this page are owned by their respective owners.
Comments are owned by the individual posters.

PJ's articles are licensed under a Creative Commons License. ( Details )