• 5 minutes Iran Says It Arrested 17 CIA Spies, Some Sentenced To Death
  • 9 minutes Will We Ever See 100$+ OIL?
  • 13 minutes Iran downs US drone. No military response . . Just Destroy their economy. Can Senator Kerry be tried for aiding enemy ?
  • 45 mins Platts says if Iran's 2 mm bbls exports comes back on market oil goes to $40 . . . What about new Permian pipelines 2.47 mm bbls coming ? . . . WHAT IF BOTH IRAN AND PERMIAN TOTAL 4.47 mm added bbls . . . OMG !
  • 21 hours Iran Loses $130,000,000 Oil Revenue Every Day They Continue Their Games . . . .Opportunity Lost . . . Will Never Get It Back. . . . . LOL .
  • 13 hours Renewables provided only about 4% of total global energy needs in 2018
  • 6 hours Today President Trump Questioned U.S. Policing the Straits of Hormuz for Rich Asian Countries. Allies Britain and Japan were asked to participate. Said NO. US spends $100 Billion/year Protecting Mideast Shipping Lanes!
  • 3 hours Millions of Barrels of Iranian Oil Are Piled Up in China’s Ports
  • 1 hour So You Think We’re Reducing Fossil Fuel? — Think Again
  • 5 hours N.Y. Governor Signs Climate Bill
  • 1 day Berkeley becomes first U.S. city to ban natural gas in new homes
  • 9 hours Oil Giant Saudi Arabia Is Set to Start First Wind-Power Plant
  • 2 hours U.S. Administration Moves To End Asylum Protections For Central Americans
  • 1 day How is E&P of Marginal Oil on the UKCS Similar to the Shale Oil Operations in the US?
  • 10 hours EIA Reports Are Fraudulent : EIA Is Conspiring With Trump To Keep Oil Prices Low
  • 1 day Trump vs. Xi Trade Battle, Running Commentary from Conservative Tree House

Is This Cyber Attack An Indirect Hit At Saudi Aramco?

Saipem

Italy’s oil services group Saipem has said that the cyber attack that hit its servers in the Middle East earlier this week is a variant of the notorious Shamoon malware that was used in a crippling attack on Saudi Aramco in 2012, which raises questions over whether the attack on Saipem was an indirect cyber breach targeting the Saudi oil giant—Saipem’s biggest customer.

“The cyber attack hit servers based in the Middle East, India, Aberdeen and, in a limited way, Italy through a variant of Shamoon malware,” Saipem said in a statement on Wednesday.

On Monday, when Saipem first reported that it had suffered a cyber attack, Saipem’s head of digital and innovation, Mauro Piasere, told Reuters that Saipem’s servers in Saudi Arabia, the United Arab Emirates (UAE), and Kuwait had been attacked and the attack originated in Chennai, India.

On Wednesday, Piasere told Reuters that Saipem didn’t know who was responsible for the cyber attack.

Adam Meyers, vice president at U.S. cybersecurity firm CrowdStrike, told Reuters, however, that he believed Iran was responsible for the attack because early technical scrutiny showed that the new Shamoon malware variant had similarities to the 2012 attack, which security experts widely believe was perpetrated by people working for the Iranian government. 

Just as news broke about Saipem’s servers in the Middle East being targeted, reports emerged that a variant of the Shamoon malware is back, Axios reported this week, citing a release from the cybersecurity unit of Alphabet, Chronicle. According to the Chronicle release, the company had detected a file infected with Shamoon in its database VirusTotal.

The malware, Chronicle said, was uploaded from Italy and is different from the previous two variants. Those moved through networks via pre-programmed credentials while this one stays on the computer it is installed on first. There is no command and control infrastructure that would allow the attackers to communicate with the virus, and what the virus does this time is encrypt all files irreversibly rather than replacing them with politically significant images, Axios reports.

By Tsvetana Paraskova for Oilprice.com

More Top Reads From Oilprice.com:



Join the discussion | Back to homepage

Leave a comment

Leave a comment

Oilprice - The No. 1 Source for Oil & Energy News
Download on the App Store Get it on Google Play