Bungling Cyber Spy Stalks Iran: Government departments, banks, and companies that operate critical infrastructure have fallen victim to badly crafted malware known as Mahdi

Over the past two years, governments in the Middle East have been targeted by sophisticated spying software, apparently created by world-class researchers whom unknown nation-states are paying to target sensitive data and infrastructure. Yet the latest piece of malware successfully spying on banks, government departments, and companies in Iran and nearby countries is almost laughably amateur. Experts believe that the software, called Mahdi, may have been created by activists. This possibility suggests that the United States and other governments fretting about their vulnerability to cyberwar may need to worry about more than just other nations.”One of my initial reactions was ‘Are you kidding?'” says researcher Roel Schouwenberg of the computer security company Kaspersky, referring to the ineptly created malware. Mahdi, which was named by researchers who discovered the program at the Israeli security company Seculert, is bloated, buggy, and written using techniques suggesting that its creators are significantly less talented than those behind Stuxnet, Flame, or Gauss, says Schouwenberg. Those forms of malware, targeted at the Middle East, stunned researchers with their sophistication.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.