All the latest UK technology news, reviews and analysis


Firms wary of Microsoft security updates after Flame spoof

14 Jun 2012
F-Secure Mikko Hypponen

HELSINKI: The Flame malware has caused lasting damage to the security industry's anti-hacker efforts, with its ability to copy Microsoft's signature destroying companies' trust in Windows patches and updates, according to renowned security researcher Mikko Hypponen.

Microsoft was forced to update its security certificate platform in response to the discovery of the Flame malware attack in an effort to prevent the use of unsigned security certificates being presented to users as authentic and issued by the Redmond firm.

The F-Secure security chief said that as a result firms may now stop installing critical updates to their networks and computers from Microsoft, at the risk of making them easier targets for cyber criminals.

"The fact is Flame spoofs Microsoft updates. That means they [the creators of Flame] have the crown jewels", said Hypponen.

"Now people don't trust Microsoft updates and that means we're going backwards, which isn't a good thing. We had it where people were automatically updating their systems with the latest software, now they're wary again."

However, Hypponen pointed out that as Flame is an advanced malware designed for espionage, it is designed to attack a small set of targets, so firms should not be too hasty in stopping their updates.

"Our customers have never been hit by Flame, it goes after very specific targets. If normal cyber criminals are like muggers, Flame's like James Bond - it doesn't go after everyone, but it gets the people it wants to," he said.

Hypponen also echoed F-Secure chief executive Christian Fredrikson‘s sentiment that Flame was a wakeup call for the security industry.

"We can protect you against all the little attacks and we're always looking for new threats. We want to detect them all, but we failed," said Hypponen.

Flame was uncovered in early May and is believed to have been created by a nation state, most likely the US and Israel, to target Iranian government computer systems.

Hypponen added he thought it was highly likely an advanced nation state was behind the creation of the malware.

"Science like this doesn't come out of nowhere - we're talking guys with PhDs doing complex maths for a long time with massive resources like a super computer," he said.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Alastair Stevenson
About

Alastair has worked as a reporter covering security and mobile issues at V3 since March 2012. Before entering the field of journalism Alastair had worked in numerous industries as both a freelance copy writer and artist.

View Alastair's Google+ profile

More on Security
What do you think?
blog comments powered by Disqus
Poll

BYOD vs CYOD vs BYOC poll

Which approach is your firm taking to managing employees' mobile devices?
21%
14%
4%
18%
31%
12%

Popular Threads

Powered by Disqus
samsung-galaxy-s5-smartphone

Samsung Galaxy S5 video review

We break down the key strengths and weaknesses of Samsung's latest Android flagship

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv33

Data protection: the key challenges

Deduplication is a foundational technology for efficient backup and recovery

rdc2

iPad makes its mark in the enterprise

The iPad can become a supercharged unified communications endpoint, allowing users to enhance their productivity

Software Development Engineer

Software Development Engineer Develop: Customise...

Contract - Microsoft Access Developement

I am looking to hire an MS Access developer for a short...

2nd Line Technical Support Engineer

Frontier Technology is a premier IT solution provider...

Network Administrator

This is an exciting opportunity to join an established...
To send to more than one email address, simply separate each address with a comma.