Stars virus explained

Stars virus should not be confused with The Star Virus.

The Stars virus is a computer virus which infects computers running Microsoft Windows. It was named and discovered by Iranian authorities in April 2011. Iran claimed it was used as a tool to commit espionage.[1] [2] Western researchers came to believe it is probably the same thing as the Duqu virus, part of the Stuxnet attack on Iran.

History

The Stars virus was studied in a laboratory in Iran – that means major vendors of antivirus software did not have access to samples and therefore they could not assess any potential relation to Duqu or Stuxnet. Foreign computer experts say they have seen no evidence of the virus, and some even doubt its actual existence.[3] [4] Iran is claiming Stars to be harmful for computer systems. It is said to inflict minor damage in the initial stage and might be mistaken for executable files of governmental organizations.

This is the second attack claimed by Iran after the Stuxnet computer worm discovered in July 2010, which targeted industrial software and equipment.[5]

Researchers came to believe that the Stars virus found by Iranian computer specialists was the Duqu virus. The Duqu virus keylogger was embedded in a JPEG file. Since most of the file was taken by the keylogger only a portion of the image remained. It turned out to be an image taken by the Hubble telescope showing a cluster of stars, the aftermath of two galaxies colliding. Symantec, Kaspersky and CrySyS researchers came to believe Duqu and Stars were the same virus.[6] [7]

See also

Notes and References

  1. Web site: Military Daily News. Military.com.
  2. Web site: Iran target of new cyber attack. https://web.archive.org/web/20110429014358/http://www.mehrnews.com/en/newsdetail.aspx?NewsID=1297506. dead. April 29, 2011.
  3. News: Experts sceptical on new Iran 'cyber attack' claim. arabianbusiness.com. Arabian Business . 8 May 2011 .
  4. Web site: ANALYSIS-Experts skeptical on new Iran "cyber attack" claim. https://web.archive.org/web/20110509061537/http://af.reuters.com/article/energyOilNews/idAFLDE74417H20110505. dead. 2011-05-09. reuters.com.
  5. Web site: Israel tests on worm called crucial in Iran nuclear delay. https://web.archive.org/web/20110117200433/http://www.msnbc.msn.com/id/41097319/ns/us_news-the_new_york_times. dead. 2011-01-17. msnbc.com.
  6. Book: Countdown to Zero Day: Stuxnet and the Launch of the World's First Digital Weapon . Crown Publishing Group . Kim Zetter . 2014 . 259 . 9780770436186 . January 20, 2015.
  7. Web site: The Duqu Saga Continues: Enter Mr. B. Jason and TV's Dexter. securelist.com. 10 November 2011 .