Home / Channel / Gauss virus to hit banking systems. state funded?

Gauss virus to hit banking systems. state funded?

Brian Smith August 10, 2012 Channel, Security

Kaspersky Lab have found another virus, which they claim could be state funded. This virus, nicknamed GAUSS appears to be have been written by the same people who handled the Flame, data mining virus.

GAUSS has been detected on 2,500 computers, mostly in Lebanon according to Kaspersky. The code tries to acquire logins for email and instant messaging accounts, social networks and also bank accounting information.

The report says that the Bank of Beirut, Byblos Bank, Blom Bank and Credit Libanais have been targeted along with the online payment system Paypal.

Costin Raiu, Kaspersky's director of global research and analysis said in an interview “We have never seen any malware target such a specific range of banks. Generally, cybercriminals target as many banks as possible to maximize financial profit, but this is a very focused cyberespionage campaign targeting certain users of online banking systems.”

Kaspersky labs who are based in Moscow said that they located the GAUSS virus while they were analysing the Flame virus in June.

Nicole Perlroth at the New York Times added “Lebanon experts said that an American cyber espionage campaign directed at Lebanon’s banking system would seem to be a plausible possibility, given Washington’s concerns that the country’s banks are being used as a financial conduit for the Syrian government and for Hezbollah, the Lebanese militant group and political party.

“The United States has had a number of Lebanese banks under the microscope for a while,” said Bilal Y. Saab, a Lebanon expert at the Monterey Institute of International Studies, who said the banks “operate much like Swiss banks” in terms of secrecy. “A computer virus could completely undermine that,” he said.”

Researchers at Kaspersky said that they were confident GAUSS is the work of the same people behind FLAME, especially as both viruses are written in C++ on the same platform and shared some code and features. The company added that Stuxnet and Doqu were probably written by different people, but that all four have probably been commissions by the same state sponsored source.

Become a Patron!

Tags

Check Also

Montech HyperFlow Silent 360 AIO Cooler – UPDATE 16 March 25

As some of you may have seen, this week we published a review of the Montech HyperFlow Silent 360 AIO cooler, both on the KitGuru website and our YouTube channel. In this review we explained that the HyperFlow Silent 360 AIO cooler has some issues in regards to the new AMD mounting system that Montech adopted...

© Copyright 2025, Kitguru.net All Rights Reserved Standard Terms

We've noticed that you are using an ad blocker.

Thank you for visiting KitGuru. Our news and reviews teams work hard to bring you the latest stories and finest, in-depth analysis.

We want to be as informative as possible – and to help our readers make the best buying decisions. The mechanism we use to run our business and pay some of the best journalists in the world, is advertising.

If you want to support KitGuru, then please add www.kitguru.net to your ad blocking whitelist or disable your adblocking software. It really makes a difference and allows us to continue creating the kind of content you really want to read.

It is important you know that we don’t run pop ups, pop unders, audio ads, code tracking ads or anything else that would interfere with the KitGuru experience. Adblockers can actually block some of our free content, such as galleries!