Michael James Stone
Administrator
Site-Administrator
member isonline
![[email]](http://images.proboards.com/new/buttons/email_sm.png "[email]") ![[send pm]](http://images.proboards.com/new/buttons/message_sm.png "[send pm]")
Joined: May 2012
Gender: Male
Posts: 1,128
|  | The "Madi" (Messiah) computer virus
« Thread Started Today at 5:28am » | ![[Quote]](http://images.proboards.com/new/buttons/quote.png "[Quote]") ![[Modify]](http://images.proboards.com/new/buttons/modify.png "[Modify]") ![[Delete]](http://images.proboards.com/new/buttons/delete.png "[Delete]") |
![[image]](http://www.israelhayom.com/site/upload/photos/2012/07/18/134260373065678710a_b.png "[image]")
Virus named after Muslim messiah attacks computers in Middle East
Mahdi virus has attacked at least 800 computers, mainly in Iran and Israel • Virus records keystrokes, captures screen shots and records audio • Components of virus include text in Farsi indicating Iranian origin • Victims are targeted with emails containing religious content or calming slide shows.
Ilan Gattegno
The "Madi" (Messiah) computer malware has officials worried in both Israel and Iran. | Photo credit: Seculert
For eight months now, a computer virus dubbed Mahdi (the prophesied redeemer of Islam) has been plaguing the Middle East.
The virus is a Trojan horse that can record every keystroke, steal login information, take screen shots of activity such as emails and social networking chats and record audio in the vicinity of the infected computer. According to Seculert, the Israeli company that identified the virus, many gigabytes of data have been collected over the last eight months.
Though it has been identified, the virus has not yet been disabled.
Experts at Kapersky Labs announced on Tuesday that Mahdi was discovered in the course of a joint investigation with Seculert, which specializes in locating cyberthreats. The experts identified more than 800 victims in Israel, Iran and a few other countries. Victims were originally targeted with emails containing videos of nuclear explosions, photos of Jesus, and news articles about Israel versus Iran. Some malicious emails had slideshows of calming photos attached.
During efforts to determine the source of the virus, Seculert found that several of the virus's components included strings in Farsi as well as dates in the Persian calendar format, indicating that the virus originated in Iran.
"The targeted victims of Mahdi include critical infrastructure companies, financial services and government embassies, which are all located in Iran, Israel and several other Middle Eastern countries," Seculert reported on their blog.
Initially, Seculert approached Kaspersky Labs to determine whether there was any connection between the Mahdi virus and the massive virus discovered earlier this year by Kaspersky — Flame. Flame, an extremely sophisticated virus, mainly targeted Iranian computers though it was discovered in many other countries as well. As of yet, no connection has been found. | |
|
![[Search This Thread]](http://images.proboards.com/new/buttons/search2.png "[Search This Thread]")
![[Add Bookmark]](http://images.proboards.com/new/buttons/bookmark.png "[Add Bookmark]")
![[Add Poll]](http://images.proboards.com/new/buttons/addpoll.png "[Add Poll]")
![[Reply]](http://images.proboards.com/new/buttons/reply.png "[Reply]")
![[Share Topic]](http://images.proboards.com/new/buttons/share.png "[Share Topic]")
![[Print]](http://images.proboards.com/new/buttons/print.png "[Print]")
Author
Logged
![[Move Topic]](http://images.proboards.com/new/buttons/movetopic.png "[Move Topic]")
![[Move Posts]](http://images.proboards.com/buttons/moveposts.png "[Move Posts]")
![[Remove Topic]](http://images.proboards.com/new/buttons/removetopic.png "[Remove Topic]")
![[Lock Topic]](http://images.proboards.com/new/buttons/lock.png "[Lock Topic]")
![[Sticky Topic]](http://images.proboards.com/new/buttons/sticky.png "[Sticky Topic]")
![[Make Announcement]](http://images.proboards.com/new/buttons/makeannouncement.png "[Make Announcement]")
![[Bump Topic]](http://images.proboards.com/new/buttons/bump.png "[Bump Topic]")
