Network Security News

Chinese possibly behind GhostNet attacks

Tuesday, March 31, 2009

The network security industry is reacting strongly to cyberthreats from China after a report over the weekend revealed that a cyberespionage network called GhostNet may be based from servers in mainland China.

Security researchers in Canada identified "high-value targets" victimized by cyberattacks from GhostNet, including the Dalai Lama, foreign embassies and ministries and NATO. Ron Deibert and Rafal Rohozinski released their 53-page report Sunday.

"The attacker(s) are able to exploit several infection vectors," the researchers wrote. "First, they create web pages that contain drive-by exploit code that infects the computers of those who visit the page. Second, the attacker(s) have also shown that they engage in spear phishing in which contextually relevant emails are sent to targets with PDF and DOC attachments."

Security experts said the attacks could be from other sources, although circumstantial evidence points to the involvement of Chinese hackers, even if they are not controlled by the communist regime.

The attacks were highly sophisticated, suggesting a level of skill and motivation that ordinary cybercriminals lack, experts said. The hackers were able to use spear-phishing emails that linked the exploited machines to command servers that order infected PCs to send stolen data, experts said.ADNFCR-1765-ID-19100208-ADNFCR

Related News:

Zeus botnet performs MySpace spam campaign to spread itself further - 11.20.2009
A sophisticated Trojan dubbed "Zeus" has sent a flood of email messages to MySpace users in an attempt to propagate itself onto more computers, according to researchers at the University of Alabama at Birmingham.

Experts dissect Chrome OS security features - 11.20.2009
Yesterday's release of Google's groundbreaking new cloud-based operating system, Chrome OS, has caused a stir in techie circles, with experts of all stripes rushing to examine the product and issue their judgments.

Microsoft counts Chrome coup with discovery of security flaw - 11.20.2009
Security researchers at Microsoft recently discovered a security vulnerability in Google's controversial Chrome Frame for Internet Explorer, a browser plug-in that simulates Chrome functionality within an Internet Explorer session.

iPhone user sues games maker, claiming to have found hidden spyware - 11.18.2009
An iPhone gamer filed a federal lawsuit against mobile game programmer Storm8 today, alleging that the company violated his privacy by including hidden code in its games that gathered his personal information without permission.

Government watchdog warns of possible IT leaks at Los Alamos - 11.16.2009
The Government Accountability Office has issued a report on data security at the Los Alamos National Laboratory which says that sensitive and highly classified information is vulnerable to outside access.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now