12 matches found
Large-Scale Water Holing Attack Campaigns Hitting Key Targets
A new APT-style espionage campaign launched this summer targeting organizations tied to financial services, government agencies and the defense industry used a technique dubbed water holing to entice victims and silently redirect them to sites hosting zero-day exploits. Researchers at RSA Securit...
Dalai Lama's Birthday Used As Bait In Targeted Attacks
Followers and supporters of Tibetan Buddhist leader the Dalai Lama were the targets of an e-mail borne attack that used news of the spiritual leader’s birthday to trick recipients into installing a surreptitious monitoring program on their computers. Researchers at Kaspersky Lab identified a numb...
Stolen Certificates Found in Malware Possibly Targeting Tibetan Groups
The recent trend of attackers using stolen digital certificates to make their malicious executables look legitimate is continuing unabated, with researchers now having come across a series of variants of the Etchfro Trojan that are using certificates taken from several companies and issued by...
Amnesty International Website Compromised, Serving Up Gh0st RAT
Amnesty International’s United Kingdom website was compromised and hosting the potent Gh0st RAT Trojan earlier this week, according to research conducted by security firm Websense. According to the company’s Security Labs blog, visitors to the site over two days this week, May 8 and 9, may have h...
MacControl Trojan Being Used in Targeted Attacks Against OS X Users
Welcome to the age of targeted attacks, Mac users. Perhaps having grown tired of owning Windows machines around the world for the last few years, attackers in China now have taken up the challenge of going after Macs with the same kind of targeted attack tactics that have served them so well in t...
New Trojan For Mac Used In Attacks On Tibetan NGOs
The security firm Alienvault reports that its own research on phishing attacks against non governmental organizations supporting the Tibetan Government in Exile is now being used as bait in a new round of phishing attacks on those same NGOs. The firm warned the public on Monday about a round of...
Debate Over Active Defense and Hacking Back Crops Up at RSA
SAN FRANCISCO–The growing stream of attacks in recent years against government agencies, critical infrastructure, utilities and other vital networks has led to an increasingly heated debate around the concept of active defense and targeting the people and groups behind those attacks. That debate...
New Mac Backdoor Olyx Found Bundled With Windows Malware
Security researchers have discovered a new piece of malware that targets Mac OS X users and installs a remote-control backdoor on compromised machines. The malware, called Olyx, was discovered in a package that also contained some Windows malware and researchers say that the Mac backdoor is...
Report Describes Far-Flung Chinese Cyber Espionage Against U.S. Government
The massive campaign of cyber intrusions of U.S. government Web sites by China’s People’s Liberation Army PLA now has a name: “Byzantine Hades,” according to a report Thursday by Reuters. The report says that China has gained the upper hand over the U.S. in the arena of cyberwarfare, developing a...
CBI Website Hacked by Pakistani Cyber Army, NIC Security Questioned
The recent hacking of the Central Bureau of Investigation's CBI website by a group called the 'Pakistani Cyber Army' has raised concerns about the security measures of servers maintained by the National Informatics Centre NIC. The NIC is responsible for government server maintenance. While the NI...
Talk on Chinese Cyber Army Pulled From Black Hat
A talk on China’s state-sponsored offensive security efforts scheduled for the Black Hat conference later this month has been pulled from the conference after concerns were raised by some people within the Chinese and Taiwanese government about the talk’s content. The presentation was to be...
Spyware Botnet 'GhostNet' Uses The Cloud
Espionage network GhostNet, first identified about a year ago, is much larger and more sophisticated than previously assumed according to a study entitled “Shadows in the Cloud”, by the Munk Centre for International Studies, the Information Warfare Monitor, the SecDev Group and the Shadowserver...