Flame can sabotage computers by deleting files, says Symantec
The virus can not only steal data but disrupt computers by removing critical files, says a Symantec researcher.
The infamousFlame viruscan delete files from a computer and is likely the cause of a cyberattack against Iran in April, according to new findings.
Flame was originally identified for its ability to steal data and capture information from keystrokes, PC displays, and audio conversations.
But a new component of Flame uncovered by security firm Symantec gives its operators the power to delete important files from compromised computer systems, Symantec researcher Vikram Thakur revealed yesterday.
"These guys have the capability to delete everything on the computer," Thakur said, according to Reuters. "This is not something that is theoretical. It is absolutely there."
If true, Flame can be used as a weapon against nations to attack vital infrastructure systems, such as dams, chemical plants, and manufacturing facilities, Reuters added. And it could have beenused as a weapon against Iranthis past April.
Boldizsar Bencsath, an expert on cyber warfare with Hungary's Laboratory of Cryptography and System Security, told Reuters that there was at least a 20 percent chance that Flame was behind the attack against Iran.
Reportedly discovered by Kaspersky Labs, Flametargeted Iran and countries in the Middle Eastby infecting a host of computers across the region. CEO Eugene Kaspersky compared the new malware to its Stuxnet predecessor and said it seemed to be state-sponsored.
Some reports have namedUnited States and Israel as the sourcesbehind Flame.
In response, the U.S. has remained mum.Israel has denied any involvementdespite comments by prime minister Moshe Ya'alon that countries concerned about Iran's nuclear program might use such cyberattacks "to harm the Iranian nuclear project."