By William Jackson
Flame, the recently identified malware that appears to date back to 2007 or earlier, was being actively updated as recently as March of 2012, and its targeted attacks apparently were being controlled by individuals rather than being automated, according to research by security company Bit9.
Flame, formally identified as W32.Flamer, is a cyber weapon developed by the United States and Israel targeting Iran and is part of the same program that developed Stuxnet, the Washington Post reported.
Bit9 CTO Harry Sverdlove said his company, which provides whitelisting and reputation-based blocking services, blocked repeated attacks by Flame against a customer in the Middle East. When event logs were analyzed it was found that the same attack dropping the same files, identified as Flame, occurred repeatedly from October 2011 through March. The attacks always came during the morning, local time, about the same time each day but not at exactly the same time.
Source: Government Computer News