I can't believe that came from your mouth!
F-Secure’s 2008 Security Overview
Mikko Hypponen of F-Secure is in this video below describing some of the coolest threats discovered on the Internet in the first half of 2008. Much of it has been covered on this blog before regarding phishing attacks and malware backdoors. But one of his statements near the beginning caught me way off guard and was a bit shocking.
The unrest in China over Tibet has prompted some very targeted malware attacks against Pro Tibet groups. Since many of those humanitarian and human rights groups knew that their email communication was constantly being monitored by China, they had switched to encrypted email- specifically, PGP. Mikko tells a story about how some of the tarteted malware attacks against the pro-tibet groups were designed to steal the public and private PGP keyrings! Since the Chinese can’t crack PGP on their own, but assuredly have copies of the encrypted transmissions, they targeted and stole the PGP keys to decrypt the emails of the dissidents and human rights groups.
Wow.
Like This Post? Rate it and tell your friends! Click the Share button below.
| Print article | This entry was posted by Dr. Jones on June 25, 2008 at 2:08 pm, and is filed under China, Cyber. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |
No comments yet.
No trackbacks yet.
This is What Happens When You Refuse to Upgrade From XP
about 2 months ago - No comments
Way too many of the customers I interact with are still stuck using Windows XP, an operating system that came out when the Twin Towers were still standing in New York. And even though they purchase 64 bit computers with large amounts of ram, they don’t utilize that power, and stick with the 32Bit image…
Government Agencies Hit with Massive Zeus Phishing Attack
about 1 year ago - No comments
A lot of readers have probably heard about Zeus by now. Its a class of malware-based variants that will compromise the unwary. But to be more specific, Zeus is a framework- a programming API that malware authors use to bundle and package their evil code. Hardly any of the big anti-virus companies can detect the…
How Ad Agencies Prevent Driveby Malware Ads
about 1 year ago - No comments
On of the most effective ways to distribute malware to unsuspecting users is to poison the advertising banners used by some of the most popular websites on the Internet. The malware author’s ad would take advantage of local browser weaknessses to inject trojan software or otherwise compromise the system. If a malware author could get…
Safe Browsing Tips- How Safe Is That Website?
about 2 years ago - No comments
I have spent lots of hours in the Analyst’s chair pouring over IDS/proxyserver/SEIM logs and alerts, and trying to piece together intrusions based on scant evidence available. So any utility or tool that helps me understand the likelihood of a successful compromise of a victim host is helpful. For instance, if you have an alert…
Conficker, Schmonficker. Thumbdrive Worms and Rogue Antivirus Are Real Threats
about 2 years ago - No comments
I haven’t written very much about the Conficker virus on this page except to note that it caused France to ground their fighter jets. I didn’t write about it because, despite the hype and the dreaded April First doomsday threat that never materialized, I just haven’t been seeing it play out very much in the…
Phishing Study- Server Re-compromise
about 2 years ago - No comments
Via F-Secure, a phishing study was done by Tyler Moore of Light Blue Touchpaper, focusing on the insecure webservers used in the attacks. Unsurprisingly, 76% of all phishing attacks are conducted using compromised webservers. And of those, one-fifth are re-compromised within six months. Tyler writes: We found that compromised machines accounted for 75.8% of all…
Obama Phishers Now Targeting Classmates.Com
about 3 years ago - No comments
The Obama Phishers, discussed here and here are changing tactics again to steal your personal information. At first they were using videos of hope and change to trick you into installing a fake flashplayer update. Then they moved to a BankofAmerica scam. Now they are circulating fake invitations to view a video at Classmates.Com. Thanks…
That’s Not My DHCP Server! Phishing With TNT
about 3 years ago - No comments
This is an interesting twist on attackers infiltrating a network to harvest usernames and passwords to financial sites. As I wrote here in March of 2007, some attackers were using Windows DNS to implant false proxies to clients. Now some malware includes the software to turn a local PC into a DHCP server, and as…
Obama Spammers Now Using BofA Phishing Attack
about 3 years ago - No comments
Remember the hacker group that was using the Barack Obama acceptance speech as a ruse to trick people into downloading malware? Jose Nazario of Arbor says they are back and this time, they are using a similar attack, tricking people into downloading software to view a demo video of how to deposit checks into your…
Evolution of Malcode Criminals
about 3 years ago - No comments
The guys who write viruses and malware aren’t the mischief makers or yore. The bad guys have figured out that the best way to get their malware removed from an infected system is to make the malware be noisy- send out tons of spam, flood the network with packets, and make the host almost unusable…
