Originally posted on F-Secure

 

  Related Posts

We just blogged about a highly targeted attack against military contractors. Now we saw one against the intelligence sector. This attack was done with a PDF file. Again. It was targeting the CVE-2009-4324 vulnerability. Again. When opened, the PDF file (md5: c3079303562d4672d6c3810f91235d9b) looked like this: What really happens in the background?... 

Many of our readers are familiar with Poison Ivy , a Remote Access Trojan that is often used in various attacks — especially in targeted espionage attacks. More information on such RAT applications can be found from this blog post . Poison Ivy RAT is developed by a Swedish coder called “Shapeless”. Now, we just learned about a... 

There’s a 0-Day PDF exploit taking advantage of a vulnerability found in Adobe Reader and Acrobat 9.2 and earlier. Adobe has issued an advisory on their PSIRT blog . The screenshot below, pulled from our automation, shows that when the PDF file is opened in Adobe Acrobat/Reader it attempts to download an executable file. The server has been... 

When major earthquakes strike along the Aleutian island chain in Alaska, they could trigger tsunamis sweeping down along the California coast and threatening many low-lying regions with disaster, including parts of San Francisco. The danger has long been known, but Thursday a team of state scientists and emergency management specialists announced... 

We’ve previously shown screenshots of document files used in targeted espionage attacks. Most often, those have been PDF files , as they are the most commonly used filetype in such attacks. But here’s a fresh set of attacks done with XLS files instead. This is some sort of personnel list. Like the other examples here, it drops and runs... 

We’re curious, how do you currently backup your data at home? Please answer our poll: Which of the following is/are your preferred method(s) for backing up data on your home computer? On 06/04/10 At 02:57 PM  Read More →

A directional antenna is set up for a demonstration by security researcher Chris Paget, center. (Photo: Dave Bullock) LAS VEGAS — A security researcher created a cell phone base station that tricks cell phones into routing their outbound calls through his device, allowing someone to intercept even encrypted calls in the clear. The device... 

Claim: A foreign government’s computer hackers were found lurking on a classified U.S. military network in 2008. UNLIKELY Example: [Collected from the internet, March 2010] More than 20 years ago, the United States realized that having an advantage in “intangible factors” — more information, better communications, greater... 

The Homeland Security Department plans to automate and centralize the process through which it receives data from the government’s consolidated terrorist watch list. DHS and the FBI’s Terrorist Screening Center (TSC), which maintains the consolidated database, are putting in place a program called DHS Watchlist Service (WLS). WLS will replace... 

Two Belarussian hackers were arrested last week. The arrests are related to a website called callservice.biz , which was in operation for several years. According to the indictment , Dmitry Naskovets and Sergey Semashko were the persons behind this service. The server itself operated in Lithuania. Callservice.biz provided an online form where you... 

  Related Tweets from Twitter

  Related News from Digg