Tuesday, August 09, 2016

What I am reading - 8/9/2016

I know what you are thinking - "Oh my god, two days in a row.  'Heaven, I'm in Heaven."  Wrong, this is not Heaven.  This is Sparta Hell.  OK, on with the idiocy.

Ars Technica - Researchers crack open unusually advanced malware that hid for 5 years -

The malware—known alternatively as "ProjectSauron" by researchers from Kaspersky Lab and "Remsec" by their counterparts from Symantec—has been active since at least 2011 and has been discovered on 30 or so targets. Its ability to operate undetected for five years is a testament to its creators, who clearly studied other state-sponsored hacking groups in an attempt to replicate their advances and avoid their mistakes.
...
The main purpose of the malware platform was to obtain passwords, cryptographic keys, configuration files, and IP addresses of the key servers related to any encryption software that was in use. Infected groups include government agencies, scientific research centers, military organizations, telecommunication providers, and financial institutions in Russia, Iran, Rwanda, China, Sweden, Belgium, and possibly in Italian-speaking countries.

Based on the presence on this malware on machines in Belgium and Italian speaking countries, I can only conclude that this was a joint effort by the Congo and Ethiopia.

Recode - Hackers breached an Oracle payments network that serves 330,000 businesses -
A Russian organized cybercrime group known for hacking into banks and retailers appears to have breached hundreds of computer systems at software giant Oracle Corp., KrebsOnSecurity has learned. More alarmingly, the attackers have compromised a customer support portal for companies using Oracle’s MICROS point-of-sale credit card payment systems.
more (Krebs on Security)

Well looks like I'll be getting yet another credit / debit card number.  Sigh...



Post a Comment