A new Kaspersky Lab report revealed that a vicious cyber-espionage malware sibling was spawned from Flame. miniFlame is Flame's own evil Mini-Me which can work as a backdoor so operators can snag any file from an infected machine. It can take screenshots when specific Microsoft programs, Adobe Reader, instant messengers, FTP, or web browsers are open. It's also believed that SPE/miniFlame is in the wild.
(...)
The researchers were "able to trace the IPs in the United States to VPN connections." While France is not exactly going down in flames, Kaspersky reported there are infections and that the "IPs in France are the most curious ones -- some do appear to be proxies or VPNs, but others are not so obvious." For example, "one of the IPs of victims in France belongs to Francois Rabelais University of Tours."
Kaspersky Lab revealed, "With Flame, Gauss and miniFlame, we have probably only scratched surface of the massive cyber-spy operations ongoing in the Middle East. Their true, full purpose remains obscure and the identity of the victims and attackers remain unknown."
