APT1-Themed Spear Phishing Campaign Linked to China

Researchers at Seculert have discovered a link between spear phishing campaigns targeting Japanese and Chinese journalists, post-Mandiant’s APT1 report, and domains connected to the Aurora attacks on Google and the Shady RAT campaign. In particular, in the attacks against the Japanese, the malwar...

Out-of-Band IE Patch Released as More Sites Attacked

Internet Explorer users, exposed to a zero-day vulnerability in the browser and a faulty temporary Fix It from Microsoft, finally got some relief today when the company, as promised, released an out-of-band patch. Meanwhile, a handful of new telco, manufacturing and human rights sites have been...

China Propaganda Film Reveals Military Hacks Of Political Targets

It’s no secret that China is a major source of attacks on governments and political groups and individuals. However, it’s been harder to prove that the Chinese government and military is directly involved in such attacks. At least until now. According to this report on the Website...

Report: French Ministry of Finance Confirms Hack

The French Ministry of Finance has confirmed a report in a French Magazine on Monday that a widespread hack of computers on its networks occurred. The hack, of over 150 MOF machines has been traced to computers in China and appears to have targeted documents that outline France and the G20’s...

As Tension Mounts, LinkedIn Knocked Offline in China

Business social-networking site LinkedIn has been unavailable in some parts of China since Thursday, suggesting it may have fallen victim to the country’s increased crackdown on online discussion sites. Pings sent to LinkedIn.com from the Chinese cities of Shanghai and Beijing weren’t returned wh...

Week in Security: Wikileaks Extravaganza, New Ransomware and Open-Source Attacks

It was difficult to go anywhere this week without hearing about the flurry of activity surrounding the Wikileaks data dump. A slew of denial-of-service attacks followed soon after, while new ransomware and attacks on open-source software filled out the rest of the week’s news. Read on for the wee...

WikiLeaks Confirms China's Responsibility for Aurora Attacks

It is being reported that WikiLeaks latest release of 250,000 diplomatic cables confirms the suspicion that China was responsible for the Aurora attacks on Google’s computer systems in January. Both Google and the State Department initially believed China was responsible for the attacks, but the...

Researchers: Google Aurora Attackers Back in Business?

Just when you thought it was safe to go back in your e-mail…Researchers say a new round of targeted attacks appear to come from the same group responsible for attacks against Google and other top U.S. firms. Writing on the Symantec Security blog...

Old and Insecure, IE6 Still Popular in the Enterprise

Conventional wisdom has it that Microsoft’s Internet Explorer Web browser is on the way out: succumbing to the death of thousand cuts administered by plucky rivals like Mozilla’s Firefox, Google’s Chrome and even Opera. But data from Web security firm zScaler shows that the Old Blue Lady of the W...

An Inside Look at the Aurora Scareware Tactic

Some of the malware families that were part of the Operation Aurora attacks that targeted dozens of major U.S. companies are being installed through fake antivirus and scareware attacks, researchers say. Researchers at Damballa, which did an in-depth report on the Aurora attacks, found that the...

Key Employees' Friends Were Facebook Targets in Aurora Attacks

A significant discovery in the recent Aurora attack that affected Google, Adobe, Yahoo and others is that the attackers had selected employees at the companies with access to proprietary data, then learnt who their friends were. The hackers compromised the social network accounts of those friends...

Lessons Learned From the Aurora Attacks

It’s been more than two weeks now since the cyber-end of the cyber-world caused by the cyber-attacks on the cyber-networks of Google, Adobe and several other high tech companies, and amid all of the noise and hand-wringing there has been precious little in the way of cool, logical analysis of wha...

Tips For Managing The IE Aurora Attack

Here are some steps Microsoft and other security firms recommend you can take now to help defend yourself against the IE Aurora attacks. Read the full article. Dark Reading...