According to CNN Security Clearance,Seculert Chief Technology Officer Aviv Raff said that whoever coded the still-active virus was fluent in Farsi and that some of the stolen data was sent to a server in Tehran.
Seculert said that it is still unclear whether it is a state-sponsored attack, Ben Brumfield reports.
Kaspersky, the Moscow-based firm that also discovered the Flame virus, said there are 800 victims of the virus and a majority of them work on critical infrastructure projects in Iran and Israel.
Other victims include employees of Israeli financial institutions, engineering students and various government agencies.
According to Brumfield, 387 victims are in Iran and 54 are in Israel.
Seculert first found the virus after opening a suspicious email with a fake Microsoft Word document, which launched a malware dropper and started the infection.
Seculert added the infected Word document was an article discussing electronic warfare between Israel and Iran, Brumfield reports.