Cyber Snake plagues Ukraine networks
An aggressive cyber weapon called Snake has infected dozens of Ukrainian computer networks including government systems in one of the most sophisticated attacks of recent years.
Also known as Ouroboros, after the serpent of Greek mythology that swallowed its own tail, experts say
it is comparable in its complexity with Stuxnet, the malware that was found to have disrupted Iran’s uranium enrichment programme in 2010...
The origins of Ouroboros remain unclear, but its programmers appear to have developed it in a GMT+4 timezone – which encompasses Moscow – according to clues left in the code, parts of which also contain fragments of Russian text. It is believed to be an upgrade of the Agent.BTZ attack that penetrated US military systems in 2008.
The malware has infected networks run by the Kiev government and systemically important organisations. Lithuanian systems have also been disproportionately hit by it.
Ouroboros has been in development for nearly a decade and is too sophisticated to have been programmed by an individual or a non-state organisation, according to the applied intelligence unit at BAE Systems, which was the first to identify and analyse the malware....
“Ukraine is top of the list [of infections] and increasing,” said Dave Garfield, managing director for cyber security at BAE, who added that the instances were almost certainly “the tip of the iceberg”.
“Whoever made it really is a very professional outfit,” Mr Garfield added. “It has a very high level of sophistication. It is a complex architecture with 50 sub-modules designed to give it extreme flexibility and the ability to evolve. It has neat and novel technical features.”
“You never get beyond reasonable doubt levels of proof in this area but if you look at it in probabilistic terms – who benefits and who has the resources – then
the list of suspects boils down to one,” said Nigel Inkster, until 2006 director of operations and intelligence for MI6 and now director of transnational threats at the think tank IISS...