Security experts at IBM published a report that includes precious details on the attack chain of the dreader Shamoon cyberweapon. IBMs X-Force Incident Response and Intelligence Services (IRIS) believe Shamoon malware is pivot element in information warfare between Saudi Arabia and Iran. The new variant of Shamoon, so-called Shamoon 2, can rewrite the MBR on affected computers with an image of a three-year-old Syrian boy named Alan Kurdi that lay dead on a Turkish beach.”]
Source: https://securityaffairs.co/wordpress/56327/malware/shamoon-attack-chain.html